TheNote
Spring Note
GooglePlay AppStore

Spring

Spring is a powerful set of tools designed for building web applications quickly and efficiently, allowing developers to create enterprise-level applications by using a simple and extensible way of making the code. Spring framework facilitates the use of Java or other languages to create the application and to be deployed on any sort of tiered server whether it be an HTTP server or an application server. Spring has been proven to add value in a wide range of environments, making a wide range of tasks easier for both smaller and larger teams. The framework provides different modules which can be used separately or together to create enterprise-level applications, bringing flexibility and simplicity to the development process. The official Spring site provides various resources and tools such as documentation, tutorials, training courses, and examples that help developers to get started and master the framework. The site also includes the latest release notes, updates, and a community section where developers can share ideas, get support, or contribute to the project.
Spring spring.io
RSS spring.io
RSS Hunter RSS Hunter Aug 19, 2024

Thread Of Notes

This Week in Spring - June 16th, 2026

This Week in Spring is reporting live from New Delhi, India, highlighting a busy week filled with release updates. The delayed May release train has now arrived, with Spring Boot 4.1.0 being a significant new version. Spring AI 2.0 is also now available, featuring exciting advancements like semantic caching and tool calling. A recent Bootiful Podcast episode featured an interview with Rob Winch, the lead of Spring Security. The Spring Tools 5.2.0 update offers an improved development experience for VS Code and Eclipse. Several other Spring projects have received updates, including Spring AI versions 1.0.9 and 1.1.8, and Spring Cloud versions 2025.0.3 and 2025.1.2. Spring Shell, Spring Modulith, and Spring Batch have also seen new releases. Other notable updates include Spring Vault, Spring for Apache Pulsar, Spring Integration, Spring Web Flow, Spring Web Services, and Spring Authorization Server. Spring Data has reached general availability with its 2026.0.0 release, alongside other data-related updates. Finally, Spring REST Docs, Spring Security, Spring Session, Spring AMQP, Spring for Apache Kafka, Spring LDAP, and Spring Retry have also been updated.
https://spring.io/blog/2026/06/16/this-week-in-spring-june-16-2026 spring.io
RSS Hunter RSS Hunter Jun 16

Spring Tools 5.2.0 released

The Spring Tools 5.2.0 release has been announced for Visual Studio Code, Cursor, Eclipse, Theia, and Claude Code. A new experimental Claude Code plugin is introduced, featuring an embedded MCP server for Spring project analytics and interactive skills. This server exposes Spring-specific problems, fixes, and indexing information to the LLM. The embedded MCP server itself has been enhanced with more capabilities and automatic configuration for Eclipse Copilot. The release also includes support for indexing and validating Spring AI projects. Maven repository version validation has been improved, considering configured repositories beyond just GA releases. New support for type-safe property references allows for automatic refactoring of string-based properties. The Spring Tools for Eclipse distribution has been updated to Eclipse 2026-06. Detailed changes are available in the release notes. Downloads and marketplace links can be found on the Spring Tools website. The next release, 5.3.0, is scheduled for mid-September 2026.
https://spring.io/blog/2026/06/15/spring-tools-5-2-0-released spring.io
RSS Hunter RSS Hunter Jun 15

Tool Calling in Spring AI 2.0: A Composable, Agentic Architecture

Spring AI 2.0 revamps tool calling, making it a core, composable feature within advisor chains. Agents now leverage this capability to discover information and act towards a goal. Tools are defined using the @Tool annotation on methods, with Spring AI automatically generating JSON schemas for parameters. The ToolCallingAdvisor orchestrates the tool execution loop, recursively calling the LLM until no more tool calls are generated. Placing memory advisors inside this loop allows richer context capture by persisting full tool request and response histories. However, this requires specific ChatMemoryRepository implementations like InMemoryChatMemoryRepository. For large tool sets, ToolSearchToolCallingAdvisor offers incremental tool disclosure to avoid context bloat. This advisor uses a tool index to progressively expose relevant tools based on natural language queries. Tool argument augmentation enables dynamic extension of tool input schemas without modifying tool code, useful for inner thinking. MCP tools integrate remote and local tool definitions, allowing applications to consume or expose Spring-managed tools via MCP servers. Both local @Tool annotations and remote MCP tools use the same ToolCallback interface, seamlessly integrating them into the advisor chain.
https://spring.io/blog/2026/06/15/spring-ai-composable-tool-calling spring.io
CdXz5zHNQW_yrI1Czp9Eu.png
RSS Hunter RSS Hunter Jun 15

Spring AI 1.0.9, 1.1.8 Available Now

Spring AI has released versions 1.0.9 and 1.1.8, now available on Maven Central. These updates focus on important improvements, stability, and bug fixes. Key changes include upgrading dependencies to Spring Boot 3.5.15 and MCP SDK 0.18.3 for both releases. Bug fixes address issues with ZhiPuAiApi and the deprecation of Pixtral models. The documentation has been enhanced with rate-limit metadata for Anthropic chat. A security fix for CVE-2026-47835 is also included in these releases. Spring AI 1.0.9 specifically deprecated Pixtral models while updating core dependencies. Spring AI 1.1.8 includes a fix for missing values in ZhiPuAiApi.ChatCompletionFinishReason and updated documentation. The team thanks all contributors for their reports and pull requests. Spring AI 2.0.0 is anticipated for release soon with a separate announcement.
https://spring.io/blog/2026/06/12/spring-ai-1-1-8-1-0-9-avaialble-now spring.io
RSS Hunter RSS Hunter Jun 12

Spring AI 2.0.0 GA Available Now

Spring AI 2.0.0 has been released, providing significant improvements and a new baseline for developing AI applications. This release is built upon Spring Boot 4 and Spring Framework 7, featuring enhanced JSON serialization with Jackson 3 and full null-safety annotations improving code reliability. Options handling has been refactored for clarity and immutability, with builders replacing constructors. The core project now focuses on a refined set of well-supported chat model providers like OpenAI, Anthropic, and Google GenAI, leveraging vendor SDKs for better adaptability. Collaboration with the community has been strengthened through updated CONTRIBUTING.md guidelines. Agentic AI capabilities have been greatly improved, with tool execution loops now first-class composable components within the advisor chain. Unified tool calling, progressive tool disclosure for scaling to hundreds of tools, and structured self-correcting output mechanisms are new additions. The release also introduces Community Extensions for event-sourced conversation memory and agentic patterns. Model Context Protocol (MCP) integration is enhanced with an official Java SDK, annotation-driven programming, and new transport implementations including streamable HTTP. Enterprise features like Micrometer spans, OpenTelemetry metrics, and OAuth 2.0 security are also inherited. Spring AI 2.0 aims to significantly improve the developer experience and pave the way for future AI features.
https://spring.io/blog/2026/06/12/spring-ai-2-0-0-GA-available-now spring.io
RSS Hunter RSS Hunter Jun 12

Spring Shell 4.0.3 and 3.4.3 are out!

On behalf of the team and all contributors, I am pleased to announce that Spring Shell 4.0.3 and 3.4.3 are now available from Maven Central! These releases come with a number of bug fixes and dependency updates. You can find the complete list of changes in the release notes: 4.0.3, 3.4.3. I would like to thank all contributors who made this release possible! We look forward to your feedback on GitHub Issues and GitHub Discussions. Spring Shell Home|Source on GitHub|Reference documentation
https://spring.io/blog/2026/06/11/spring-shell-4-0-3-and-3-4-3-are-out spring.io
RSS Hunter RSS Hunter Jun 11

Spring Modulith 2.1 GA, 2.0.7, and 1.4.12 released

Spring Modulith has released new versions: 2.1 GA, 2.0.7, and 1.4.12. The 2.0.7 and 1.4.12 releases are primarily bug fix updates with dependency upgrades. Version 2.1 GA introduces significant new features including event externalization outbox support for Namastack and JobRunr, enhanced application module testing, broader event visibility across threads, and streamlined observability. Key contributors were thanked for their work on the event externalization outbox feature.
https://spring.io/blog/2026/06/11/spring-modulith-2-1-ga-2-0-7-and-1-4-12-released spring.io
RSS Hunter RSS Hunter Jun 11

Spring Cloud 2025.0.3 (aka Northfields) Has Been Released

The Spring Cloud 2025.0.3 Release Train is now generally available. This release is the final open-source version for the 2025.0.x train. Open-source support for this train will conclude on June 30th, 2026. The new release serves as a final update before that support ends. It is built upon Spring Boot 3.5.15. Spring Cloud Gateway received a fix for CVE-2026-47825 and gained support for empty path prefixes. Additionally, the MVC ProxyExchange now provides observability for URI templates. Several other modules, including Spring Cloud Bus, Openfeign, Circuitbreaker, Kubernetes, Function, Task, Stream, Vault, Commons, Netflix, Consul, Zookeeper, Config, Build, and Contract, have been updated to their latest versions within this train. Instructions are provided for integrating this release using Maven and Gradle dependency management. Feedback is welcomed through various community channels.
https://spring.io/blog/2026/06/11/spring-cloud-2025-0-3-aka-northfields-has-been-released spring.io
RSS Hunter RSS Hunter Jun 11

Spring Cloud 2025.1.2 (aka Oakwood) Has Been Released

The Spring Cloud 2025.1.2 Release Train is now generally available. This release is compatible with Spring Boot 4.0.7 and adds support for Spring Boot 4.1.0. Significant updates were made to several modules. Spring Cloud Kubernetes now moves Fabric8 discovery to listers and adds a filter for service labels. Spring Cloud Config improves handling of negated profiles in S3 bucket YAML files. Spring Cloud Gateway addresses a CVE and introduces a new StripContextPath filter, along with codec customization for body filters. Several other modules including Netflix, Stream, and Config received updates to their 5.0.x versions. The release notes provide further details on these changes. Feedback on this release is welcomed through various community channels. Instructions are provided for integrating the release into Maven and Gradle projects using dependency management. The spring-cloud-dependencies BOM is updated to version 2025.1.2.
https://spring.io/blog/2026/06/11/spring-cloud-2025-1-2-aka-oakwood-has-been-released spring.io
RSS Hunter RSS Hunter Jun 11

Spring Vault 4.1 Generally Available

The team is pleased to announce the general availability of Spring Vault 4.1, which can be accessed from Maven Central. This release includes several refinements and new features, such as a new VaultClient API and improved dynamic secrets management through ManagedSecret and ManagedCertificate abstractions. Additionally, the release features a CertificateContainer component that utilizes Vault's certificate rotation and renewal capabilities, as well as enhanced documentation for credential rotation. For more information about the release, users can visit the release notes page in the wiki to learn about the updates and improvements in Spring Vault 4.1.
https://spring.io/blog/2026/06/10/spring-vault-4-1-available spring.io
RSS Hunter RSS Hunter Jun 10

Spring Boot 4.1.0 available now

Spring Boot 4.1.0 has been officially released and is now accessible on Maven Central. This significant update brings forth numerous enhancements, innovative features, and refreshed dependency versions. It also incorporates all the bug fixes, documentation enhancements, and security patches inherited from the previous version, Spring Boot 4.0.7. Key highlights of this new release include integrated support for Spring gRPC. The release also introduces updated Jackson configuration properties, offering improved customization options. A new feature for HTTP client SSRF mitigation has been implemented through InetAddressFilter. Observability has seen multiple improvements, including an updated integration with OpenTelemetry. Additionally, Log4j now benefits from file rotation support. For a comprehensive overview of all new features, upgrade directives, and deprecation notices, users are encouraged to consult the official wiki.
https://spring.io/blog/2026/06/10/spring-boot-4 spring.io
RSS Hunter RSS Hunter Jun 10

Spring gRPC 1.1.0 available now

On behalf of the team and everyone who has contributed, I'm happy to announce that Spring gRPC 1.1.0 has been released and is now available from Maven Central. The main change in 1.1.0 is the migration of autoconfiguration to Spring Boot 4.1.0. There is a migration guide in the project wiki. This release includes features, bug fixes, documentation improvements, and dependency upgrades. Thanks to all those who have contributed with issue reports and pull requests. How can you help? If you're interested in helping out, check out the open issues. If you have general questions, please ask on Stack Overflow using the spring-grpc tag. GitHub | Issues | Documentation | Stack Overflow
https://spring.io/blog/2026/06/10/spring-grpc-1-1-0-available-now spring.io
RSS Hunter RSS Hunter Jun 10

Spring Batch 6.0.4 and 5.2.6 available now

On behalf of the team and all contributors, I am pleased to announce that Spring Batch 6.0.4 and 5.2.6 are available from Maven Central now. These releases come with a number of bug fixes, improvements and documentation updates. The release notes can be found on GitHub: 6.0.4, 5.2.6. These versions will be available respectively through Spring Boot 4.0.7 and 3.5.15. Spring Batch 5.2.6 is most probably the last OSS release of the 5.2.x generation, so please consider upgrading to 6.0.x at your earliest convenience. Commercial releases are also available. Spring Batch Home|Source on GitHub|Reference documentation
https://spring.io/blog/2026/06/10/spring-batch-6-0-4-and-5-2-6-available-now spring.io
RSS Hunter RSS Hunter Jun 10

Spring Boot 3.5.15 available now

Spring Boot 3.5.15 has been released and is available on Maven Central. This update incorporates 70 bug fixes, documentation enhancements, and dependency upgrades. The release also addresses two security vulnerabilities, CVE-2026-40992 concerning SSL hostname verification in mail auto-configuration and CVE-2026-41001 related to predictable temporary directories in Artemis auto-configuration. Contributions to Spring Boot can be made by identifying issues tagged "ideal for contribution" in the repository, and general questions can be directed to Stack Overflow with the spring-boot tag.
https://spring.io/blog/2026/06/10/spring-boot-3-5-15-available-now spring.io
RSS Hunter RSS Hunter Jun 10

Spring Boot 4.0.7 available now

Spring Boot 4.0.7 has been released and is available on Maven Central. This update contains 77 bug fixes, documentation enhancements, and dependency upgrades. The release also addresses two CVEs, specifically related to mail auto-configuration and predictable temporary directories in Artemis. Contributions are welcomed via the issue repository, and general questions can be directed to Stack Overflow.
https://spring.io/blog/2026/06/10/spring-boot-4-0-7-available-now spring.io
RSS Hunter RSS Hunter Jun 10

Spring Vault 4.0.3 and 3.2.1 available

On behalf of the team and everyone who has contributed, I am pleased to announce that the Spring Vault 4.0.3 and 3.2.1 releases are available now. Both releases ship bug fixes, selected improvements, and dependency upgrades. You can find the full changelog at https://github.com/spring-projects/spring-vault/releases/tag/4.0.3 respective https://github.com/spring-projects/spring-vault/releases/tag/3.2.1.
https://spring.io/blog/2026/06/10/spring-vault-4-0-3-3-2-1-available spring.io
RSS Hunter RSS Hunter Jun 10

Spring for GraphQL 1.4.6 and 2.0.4 released

Spring for GraphQL has released maintenance versions 1.4.6 and 2.0.4, which fix three high-severity CVEs. Users are strongly encouraged to upgrade to these new releases as soon as possible due to the critical nature of the vulnerabilities. The 1.4.6 release marks the final open-source version for the 1.4.x generation, with the 2.0.x line now being the recommended successor. Commercial support options are also available for those who require it.
https://spring.io/blog/2026/06/10/spring-for-graphql-1-4-6-and-2-0-4-released spring.io
RSS Hunter RSS Hunter Jun 10

Spring for Apache Pulsar 1.2.18 and 2.0.6 are now available

Spring for Apache Pulsar 1.2.18 and 2.0.6 have been released and are available on Maven Central. These are maintenance releases primarily focused on updating dependencies. The 2.0.6 version includes upgrades to the Pulsar client, Jackson, logback, Caffeine, and Testcontainers, while 1.2.18 contains Jackson and logback updates. Both releases address security vulnerabilities, with 1.2.18 slated for Spring Boot 3.5.15 and 2.0.6 for Spring Boot 4.0.7 and 4.1.0.
https://spring.io/blog/2026/06/10/spring-for-apache-pulsar-1-2-18-and-2-0-6-are-now-available spring.io
RSS Hunter RSS Hunter Jun 9

Spring Data 2026.0.0 generally available

Spring Data 2026.0, also known as version 4.1, has been officially released and is available on Maven Central. This release introduces several significant enhancements across various modules. A key theme is the implementation of type-safe property paths for improved code safety and readability. Redis Pub/Sub message listeners have been annotated, and the Redis module has migrated to UnifiedJedis. The MongoDB module now features a revised bulk API that supports multi-collection write operations. For JDBC and R2DBC, single-statement upsert functionality has been added for aggregate roots. More in-depth information regarding these features can be found on the Release Notes wiki page. Individual changelogs and documentation links are provided for Spring Data Commons, JPA, MongoDB, Cassandra, KeyValue, Neo4j, LDAP, REST, Redis, Elasticsearch, Couchbase, and Relational. This update signifies a substantial stride forward for the Spring Data ecosystem.
https://spring.io/blog/2026/06/09/spring-data-2026-0-0-generally-available spring.io
RSS Hunter RSS Hunter Jun 9

Spring REST Docs 4.0.1

Spring REST Docs 4.0.1 has been released and is available on Maven Central. This update features 10 bug fixes, enhanced documentation, and upgraded dependencies. It also resolves the "XML External Entity (XXE) injection when documenting untrusted XML content" vulnerability, identified as CVE-2026-40991. Interested contributors can find opportunities in the issue repository, and questions can be directed to Stack Overflow.
https://spring.io/blog/2026/06/09/spring-restdocs-4 spring.io
RSS Hunter RSS Hunter Jun 9

Spring AI 2.0.0-RC2 Available Now

The Spring AI engineering team has announced the release of Spring AI 2.0.0-RC2, which is now available from Maven Central. This release includes important improvements, stability enhancements, and bug fixes, making it a significant update for users. The focus of this release is on key improvements, such as making Anthropic and OpenAI HTTP clients configurable and restoring compatibility with Spring Framework versions less than 7.0.4. The release also includes bug fixes, including fixes for BedrockProxyChatModel model option handling and OllamaChatModel issues. Additionally, the release addresses problems with replay reasoning content in OpenAI assistant history and options replacing instead of merging in ChatModel. The Spring AI team has also ensured that ToolCallingAdvisor is always auto-registered to support runtime-injected tools. The complete release notes for Spring AI 2.0.0-RC2 are available for users to review. The Spring AI team will continue to focus on improving AI application development with Spring Boot, with upcoming versions building on the foundations established in this release. Users can stay up to date with the latest developments and contribute to the project by visiting the GitHub repository or joining the discussion in the community channels. The project page, GitHub repository, and documentation for Spring AI 2.0.0-RC2 are all available as resources for users.
https://spring.io/blog/2026/06/09/spring-ai-2-0-0-RC2-available-now spring.io
RSS Hunter RSS Hunter Jun 9

Spring Data 2025.1.6 and 2025.0.12 released

Service releases 2025.1.5 and 2025.0.11 are now available. These releases incorporate dependency upgrades and selected improvements. Crucially, they address numerous CVEs related to security vulnerabilities. These vulnerabilities include denial of service issues in property path resolution and data binding. They also fix potential SpEL injection risks in various Spring Data modules. Specific fixes target MongoDB, Relational, KeyValue, and REST components. Spring Data REST also sees patches for JSON Patch bypasses and exposure of internal data. Upcoming Spring Boot releases will integrate these updates within the next week. The releases include updated versions for Spring Data Commons, JPA, MongoDB, Cassandra, and more. Specific version numbers are provided for both the 2025.1 and 2025.0 lines. Links to Javadoc, documentation, and changelogs are available for each module.
https://spring.io/blog/2026/06/09/spring-data-2025-1-6-and-2025-0-12-released spring.io
RSS Hunter RSS Hunter Jun 9

Spring Authorization Server 2026.06 Releases - Contains CVE Fixes

Spring Authorization Server 1.5.8 has been released, fixing CVE-2026-41008 concerning an open redirect vulnerability via request_uri. Open source support for versions 1.3.x and 1.4.x has concluded. Commercial customers can upgrade to 1.3.12 or 1.4.11 respectively, which are also integrated into recent Spring Boot releases. These updated versions are available through the Spring commercial artifact repository.
https://spring.io/blog/2026/06/09/spring-authorization-server-releases-2026-06 spring.io
RSS Hunter RSS Hunter Jun 9

Spring REST Docs 3.0.6

The Spring REST Docs team has announced the release of version 3.0.6, which is now available on Maven Central. This release includes several bug fixes, documentation improvements, and dependency upgrades, thanks to the contributions of many individuals who submitted issue reports and pull requests. The new release also addresses a critical vulnerability, specifically the CVE-2026-40991 "XML External Entity injection" issue that occurred when documenting untrusted XML content. For those interested in contributing to the project, the team invites them to check out the "ideal for contribution" tag in the issue repository or ask general questions on stackoverflow.com using the spring-restdocs tag.
https://spring.io/blog/2026/06/09/spring-restdocs-3 spring.io
RSS Hunter RSS Hunter Jun 9

Spring LDAP 2026.06 Releases - Contains CVE Fix

Spring LDAP has released new versions 3.3.8, 4.0.4, and 4.1.0, which fix a critical authentication bypass vulnerability. The 4.1.0 release introduces new features detailed on the Spring LDAP website, and all changes are listed in the provided changelogs. Notably, open-source support has ended for older Spring LDAP generations, but commercial customers can update to specific versions that include the security fixes. These commercial versions are also integrated into recent Spring Boot releases and are accessible via a Spring Enterprise Subscription.
https://spring.io/blog/2026/06/08/spring-ldap-releases-2026-06 spring.io
RSS Hunter RSS Hunter Jun 8

Spring HATEOAS 3.1 GA, 3.0.7, and 2.5.3 released

On behalf of the community, I am excited to announce the availability of Spring HATEOAS 3.1 GA, 3.0.7, 2.5.3. The GA release ships the usual dependency updates and a few polishes in link parsing. CVE reports These releases address the following CVEs: CVE-2026-41006 – Spring HATEOAS Collection+JSON/UBER deserializers do not honor Jackson configuration CVE-2026-41007 – Spring HATEOAS heap exhaustion through unbounded internal caching Find more information in the full changelogs for 3.1 GA, 3.0.7, and 2.5.3.
https://spring.io/blog/2026/06/08/spring-hateoas-3-1-GA-3-0-7-and-2-5-3-released spring.io
RSS Hunter RSS Hunter Jun 8

Spring Framework 7.0.8 and 6.2.19 Available Now

Spring Framework has released versions 7.0.8 and 6.2.19. These updates address a significant number of Common Vulnerabilities and Exposures (CVEs). The vulnerabilities span various modules and functionalities within the framework. Several CVEs relate to denial of service (DoS) attacks, including those targeting multipart requests, versioned resources, AntPathMatcher, and integer overflows in SpEL expressions. Information disclosure is also addressed, particularly concerning static resource caching. Session fixation and predictable session IDs in the WebSocket module are covered by specific CVEs. Path traversal vulnerabilities via versioned static resources are also patched. Cross-site scripting (XSS) vulnerabilities have been remediated in relation to JavaScriptUtils and JSP form tags. The updates also fix security filter bypass issues in the WebFlux Kotlin Router DSL. Open redirect vulnerabilities and arbitrary method invocation in SpEL expressions are among the other addressed security concerns. Multipart request smuggling and server-side request forgery are also mitigated. Finally, unsafe deserialization via Jackson JMS converters has been patched. Spring Framework 6.2.19 is likely the final release of its generation, and users are encouraged to upgrade to 7.0.x.
https://spring.io/blog/2026/06/08/spring-framework-7-0-8-and-6-2-19-available-now spring.io
RSS Hunter RSS Hunter Jun 8

Spring Retry 2.0.13 available now

Spring Retry 2.0.13 has been released and is available on Maven Central. This new version incorporates five bug fixes, enhancements to documentation, and updated dependencies. The release also addresses a critical CVE related to cache exhaustion in stateful retries that could lead to a denial of service. Community members are encouraged to contribute by checking the "ideal for contribution" tag on the issue repository or asking questions on Stack Overflow.
https://spring.io/blog/2026/06/08/spring-retry-2 spring.io
RSS Hunter RSS Hunter Jun 8

Spring AI 2.0.0-RC1 Available Now

The Spring AI engineering team has announced the release of Spring AI 2.0.0-RC1, which is an API stabilization milestone on the road to 2.0.0 GA. This release includes a unified tool execution across all models, with tool execution now handled externally via ChatClient with ToolCallingAdvisor. The internalToolExecutionEnabled property has been removed, and the toolNames API and SpringBeanToolCallbackResolver have been replaced with explicit ToolCallback beans. The ToolCallAdvisor has been renamed to ToolCallingAdvisor, and a new ToolSearchToolCallingAdvisor has been introduced for on-demand tool discovery. Memory advisors are now placed outside ToolCallingAdvisor by default, and the DEFAULT_CHAT_MEMORY_PRECEDENCE_ORDER has been lowered. The release also includes chat memory improvements, such as turn-boundary snapping in MessageWindowChatMemory and avoiding duplicate chat memory in tool prompts. Structured output enhancements have been added, including the ability to access the timestamp field from the spring_ai_chat_memory table programmatically. The release also includes API and code cleanup, model updates, bug fixes, documentation updates, and dependency upgrades. The Spring AI team thanks all the contributors who worked on this release, and resources are available on the project page, GitHub, and Stack Overflow. The release notes and documentation for 2.0.0-RC1 are also available. Overall, this release provides a range of improvements and enhancements to the Spring AI framework, and is an important step towards the final 2.0.0 GA release.
https://spring.io/blog/2026/06/06/spring-ai-2-0-0-RC1-available-now spring.io
RSS Hunter RSS Hunter Jun 6

This Week in Spring - June 2nd, 2026

The latest installment of This Week in Spring has been released, addressing the delay of the May releases and providing an update on the new release schedule. The May Spring release train has been moved to June 8-14 due to the need for security patches. The majority of projects within the Spring portfolio require upgrades for these newly released security patches, and it is strongly recommended to upgrade as soon as possible. The reason for the delay is the rapid rise in Common Vulnerabilities and Exposures, with 55 new security reports submitted in March 2026 resulting in 26 new CVEs being announced in April. The Spring team is working to meet the moment and provide the necessary upgrades for users. In other news, the latest episode of A Bootiful Podcast features an interview with Microsoft's Martijn Verburg. New releases are available, including Spring AI 2.0.0-M8, Spring AI 1.0.8, and Spring AI 1.1.7. A new course on Spring AI is available on Coursera, and enrollment starts immediately. Additionally, there are several interesting talks and projects available, including a talk on building AI Agents with Spring and MCP, and the Spring AI Playground project. The Spring team is committed to providing the necessary tools and resources for users to stay up to date with the latest developments in Spring and AI.
https://spring.io/blog/2026/06/02/this-week-in-spring-june-2-2026 spring.io
CdXz5zHNQW_FLFeoaXx2i.png
RSS Hunter RSS Hunter Jun 2

Spring and Security In The Times Of AI

The Spring release train has been moved to June 8-14, with a strong recommendation to upgrade to the latest security patches due to a significant increase in reported vulnerabilities. Generative AI is accelerating market time and improving quality across industries, impacting the open-source world by both aiding development and increasing the volume of community-generated issues and security reports. AI models have drastically lowered the barrier to identifying potential code vulnerabilities, leading to a surge in security reports across various open-source projects. This influx has resulted in a spike in announced CVEs from Spring, with March and April seeing unprecedented numbers of security reports. Many of these reports are duplicates or invalid findings, but the overall increase is expected to persist for some time. Spring users are urged to upgrade to the June releases to address the numerous security vulnerabilities, even those of medium-to-low severity, due to their sheer volume. VMware Tanzu Spring offers solutions to automate upgrades and ensure users remain secure and compliant in this rapidly changing landscape. The Spring team continues to address security reports through disclosure measures, acknowledging that while the volume of AI-generated findings may eventually decrease, it is unlikely to return to historic norms soon. Information on security advisories is available at spring.io/security. Tanzu Spring customers can leverage day 0 access to patches and professional services for assistance.
https://spring.io/blog/2026/06/01/spring_and_security_in_the_times_of_ai spring.io
CdXz5zHNQW_afLOaNbZdf.png
RSS Hunter RSS Hunter Jun 1

Spring AI 2.0.0-M8 Available Now

The Spring AI engineering team has released version 2.0.0-M8, now available on Maven Central. This release includes significant improvements, stability enhancements, and crucial bug fixes. New features include improved MistralAiApi Jackson mapping and access to rate limit information from Anthropic. Several bugs were addressed, such as incorrect dependency declarations and issues with OpenAI API key requirements. The team fixed regressions in transitive auto-configuration dependencies to ensure proper functionality. Development will continue to center on enhanced AI application development with Spring Boot. Future releases will build on this foundation with improved capabilities and developer experience. The Spring AI team encourages community contribution and engagement. Resources such as the project page, GitHub, and documentation are readily available. The project aims to provide comprehensive support for developers building AI applications within the Spring ecosystem.
https://spring.io/blog/2026/05/27/spring-ai-2-0-0-M8-available-now spring.io
RSS Hunter RSS Hunter May 27

This Week in Spring - May 26th, 2026

This Week in Spring features a recap of recent Spring Framework, Spring Boot, and Spring AI updates. The author recently presented on these topics in Portugal and Germany, enjoying participation in keynotes and standalone sessions. Purnima Padmanaban discusses how Spring and Broadcom address evolving security challenges. Craig Walls continues his Spring AI recipe series with a focus on MCP logging. A user shares positive experiences with Spring Boot, citing reduced costs, faster issue resolution, and fewer crashes compared to Node. The Kotlin Conf 2026 keynote recording is available for viewing. The author enjoyed a discussion on patching Spring applications with DaShaun Carter. Spring AI releases 1.0.8, 1.1.7, and 2.0.0-M7 are now available. The author also spoke with Hadi Hariri of Kotlin and JetBrains.
https://spring.io/blog/2026/05/26/this-week-in-spring-may-26-2026 spring.io
RSS Hunter RSS Hunter May 26

Spring AI 1.0.8, 1.1.7, 2.0.0-M7 Available Now

Spring AI has announced the release of versions 1.0.8, 1.1.7, and 2.0.0-M7, now available via Maven Central. These releases bring significant improvements, stability enhancements, and crucial bug fixes across all active release streams. Notably, versions 1.1.7 and 2.0.0-M7 include important security fixes to address CVE-2026-41863. Spring AI 1.0.8 specifically fixes a RedisVectorStore issue where deletes were silently truncated to the first 10 messages. Spring AI 1.1.7 resolves compatibility issues with Ollama on GraalVM native images and an OpenAiChatModel problem with dropping streaming chunks. The 2.0.0-M7 release introduces several breaking changes, so users should consult the upgrade notes. This version deprecates SSE transports in favor of Streamable HTTP as the new default server protocol. ToolCallAdvisor is now the standard method for handling tool calls, and a new ToolSpec fluent API is available for programmatic tool definition. Gemini support has been updated to Gemini 2.5 Flash, alongside a refreshed Google Client Library BOM. Key bug fixes in 2.0.0-M7 include issues with ChatClient#prompt ignoring chat options and incorrect Kotlin nullable field handling. The Spring AI team is committed to continuously improving AI application development within the Spring Boot ecosystem. Future releases will build upon these foundations with enhanced capabilities and a better developer experience.
https://spring.io/blog/2026/05/23/spring-ai-1-0-8-1-1-7-2-0-0-M7-available-now spring.io
RSS Hunter RSS Hunter May 23

Spring Office Hours Podcast: S5E16 - May Release Train Shift & What's Coming in Spring Boot 4.1

Join Dan Vega and DaShaun Carter for the latest updates from the Spring Ecosystem. In this episode, Dan and DaShaun break down the recently announced shift of the May release train from May 11-22 to June 1-5, and what that means for your upgrade planning across the Spring portfolio. They also dig into what is shaping up in Spring Boot 4.1, including Spring gRPC support, Log4j file rotation strategies, OpenTelemetry enhancements, OAuth2 resource server improvements, MongoDB support for Spring Batch, and AMQP 1.0. You can participate in our live stream to ask questions or catch the replay on your preferred podcast platform. Show Notes May Release Train Shift Blog Post Spring Boot 4.1 Release Notes
https://spring.io/blog/2026/05/19/spring-office-hours-podcast-S5E16 spring.io
RSS Hunter RSS Hunter May 19

This Week in Spring - May 19th, 2026

The author is hurrying to catch a train to Kotlin Conf 2026, where they will present on Kotlin and Spring. This week's "This Week in Spring" post summarizes recent developments. A Bootiful Podcast episode with Adib Saikali was released. Spring Cloud Function and Config releases address security vulnerabilities. Spring AI updates (1.0.6, 1.1.6, and 2.0.0-M5/M6) are available. The post recommends exploring the latest Paketo buildpack. An article discusses patching Spring applications. Several Spring Boot starters are highlighted, including API sunset timelines and idempotent API operations. A blog explores Spring Boot 4 and Spring AI 2. A Tanzu Platform post discusses AI-related platform changes and recommendations. Finally, the Spring Documentary is also mentioned.
https://spring.io/blog/2026/05/19/this-week-in-spring-may-19-2026 spring.io
RSS Hunter RSS Hunter May 19

This Week in Spring - May 12th, 2026

The author is currently at a conference discussing OpenRewrite and Moderne. They highlight several interesting topics including a podcast interview about testing Spring Boot, Spring AI recipes and talks, and a discussion on database scaling. They also mention a Spring Boot-based event sourcing library, LLM integrations, and the availability of new Spring AI releases. Finally, the text points to releases of Spring Cloud Function and Config to address vulnerabilities and provides a tutorial on Redis caching.
https://spring.io/blog/2026/05/12/this-week-in-spring-may-12-2026 spring.io
RSS Hunter RSS Hunter May 12

May Release Train Date Changes

In preparation for the May release train which will include updates across the portfolio and new minor versions (Spring Boot 4.1, etc) we are shifting the release train from the originally scheduled timeline from May 11-22 to the new timeline of June 1-5. This applies to all OSS versions including new minor releases and patch releases. https://calendar.spring.io will be updated soon in accordance with this. We look forward to your feedback on the upcoming new features!
https://spring.io/blog/2026/05/11/may-train-shift spring.io
RSS Hunter RSS Hunter May 11

Spring Office Hours Podcast: S5E15 - Upgrading Spring and OSS Security

Join Dan Vega and DaShaun Carter for the latest updates from the Spring Ecosystem. In this episode, Dan and DaShaun tackle two challenges every Spring developer faces: keeping applications up to date and staying ahead of security vulnerabilities in open source dependencies. They explore how AI tools are reshaping the upgrade experience, from automated migration recipes to intelligent vulnerability detection and remediation. Learn what's available today, what's coming next, and how to put these tools to work in your own projects. You can participate in our live stream to ask questions or catch the replay on your preferred podcast platform. Show Notes Enterprise Support
https://spring.io/blog/2026/05/11/spring-office-hours-podcast-S5E15 spring.io
RSS Hunter RSS Hunter May 11

Spring AI 1.0.7, 1.1.6, 2.0.0-M6 Available Now

Spring AI versions 1.0.7, 1.1.6, and 2.0.0-M6 are now available, offering improvements and bug fixes. These releases include a total of 143 improvements, bug fixes, and documentation updates. Crucially, security fixes addressing CVE vulnerabilities are also included. A major focus of the releases includes improvements, stability enhancements, documentation updates, and enhanced security via dependency upgrades. A breaking change across versions is the deprecation of `PromptChatMemoryAdvisor`, requiring explicit conversation IDs. Developers must explicitly provide conversation IDs in their applications. Several changes affect how configurations are handled, notably with OpenAI properties. Version 2.0.0-M6 removes vector store integrations for SAP HANA DB and Infinispan. The codebase benefits from continued polish with null-safety annotations. The AssistantMessage builder has been refactored for better inheritance support. Updated SDKs for OpenAI and Anthropic are incorporated. The team is dedicated to improving AI application development for Spring Boot.
https://spring.io/blog/2026/05/08/spring-ai-1-0-7-1-1-6-2-0-0-M6-available-now spring.io
RSS Hunter RSS Hunter May 8

Spring Cloud Function and Config Have Been Released To Address Several CVEs

The Spring Cloud team has released new versions of Spring Cloud Config and Spring Cloud Function. These releases include updates for both Open Source (OSS) and Enterprise versions of the respective projects. Several Common Vulnerabilities and Exposures (CVEs) have been addressed in both Spring Cloud Config and Spring Cloud Function releases. Users are encouraged to consult the release pages for specific details about the fixes and impacted versions.
https://spring.io/blog/2026/05/08/spring-cloud-april-releases spring.io
RSS Hunter RSS Hunter May 8

This Week in Spring - May 5th, 2026

This week's Spring update comes from Mainz, Germany, where the author is attending the JAX conference. After the talks, the author will continue to London for the Devoxx UK show. A previous podcast episode featured a discussion about a JobRunr-powered project. The blog has a new Releases section with concise information about Spring project updates. Several Spring project releases are highlighted, like Spring AI, Spring Shell, and Spring Modulith. Spring Boot releases, including 4.1.0 RC1, also have been released. Additionally, Spring Authorization Server, Spring for Apache Pulsar, and Spring for Apache Kafka releases are mentioned. There are articles focusing on graph-based agentic workflows and database optimization with HikariCP. Other interesting topics are a third-party event sourcing library, the role of LLMs in Java, and the power of @Retryable support.
https://spring.io/blog/2026/05/05/this-week-in-spring-may-05-2026 spring.io
RSS Hunter RSS Hunter May 5

Spring Office Hours Podcast: S5E14 - Spec Driven Development with Simon Martinelli

Join Dan Vega and DaShaun Carter for the latest updates from the Spring Ecosystem. In this episode, Dan and DaShaun are joined by Java Champion, Vaadin Champion, and Oracle ACE Pro Simon Martinelli to talk about Spec-Driven Development. With AI reshaping how we write code, Simon makes the case that requirements, not code, should be the single source of truth. We will explore what Spec-Driven Development looks like in practice, how it fits into a Java and Spring workflow, and how teams can use it to move from use case to running code with AI in the loop. You can participate in our live stream to ask questions or catch the replay on your preferred podcast platform. Show Notes Simon Martinelli on LinkedIn Simon Martinelli on X Spec-Driven Development: How AI Changed Everything (And Nothing) by Simon Martinelli at Spring I/O 2026
https://spring.io/blog/2026/05/04/spring-office-hours-podcast-S5E14 spring.io
RSS Hunter RSS Hunter May 4

Cookies help us deliver our Services. By using our Services or clicking I agree, you agree to our use of cookies .