Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.205...7.21.0-rc.206

• fix: preserve indexed PNG transparency to prevent black box regression when stamping PDF by @wang0331 in https://github.com/LibrePDF/OpenPDF/pull/1525
• Bump com.ibm.icu:icu4j from 78.2 to 78.3 by @dependabot[bot] in https://github.com/LibrePDF/OpenPDF/pull/1518
• refactoring string concatenation to text blocks by @stomaszek in https://github.com/LibrePDF/OpenPDF/pull/1520
• GlyphLayoutManager for correct glyph layout per document by @vk-github18 in https://github.com/LibrePDF/OpenPDF/pull/1519
• Adding maven wrapper by @stomaszek in https://github.com/LibrePDF/OpenPDF/pull/1523
• removing unused imports reported by quality tools by @stomaszek in https://github.com/LibrePDF/OpenPDF/pull/1514
• added maven enforcer plugin, resources plugin version defined by @stomaszek in https://github.com/LibrePDF/OpenPDF/pull/1511
• Bump org.bouncycastle:bcprov-jdk18on from 1.83 to 1.84 by @dependabot[bot] in https://github.com/LibrePDF/OpenPDF/pull/1535
• Bump org.bouncycastle:bcpkix-jdk18on from 1.83 to 1.84 by @dependabot[bot] in https://github.com/LibrePDF/OpenPDF/pull/1532
• Bump com.google.errorprone:error_prone_annotations from 2.48.0 to 2.49.0 by @dependabot[bot] in https://github.com/LibrePDF/OpenPDF/pull/1528
• Bump com.puppycrawl.tools:checkstyle from 13.3.0 to 13.4.0 by @dependabot[bot] in https://github.com/LibrePDF/OpenPDF/pull/1526
• Bump org.jetbrains.kotlin:kotlin-stdlib from 2.3.10 to 2.3.20 by @dependabot[bot] in https://github.com/LibrePDF/OpenPDF/pull/1515

• @stomaszek made their first contribution in https://github.com/LibrePDF/OpenPDF/pull/1520

Full Changelog: https://github.com/LibrePDF/OpenPDF/compare/3.0.3...3.0.4

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.204...7.21.0-rc.205

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.203...7.21.0-rc.204

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.202...7.21.0-rc.203

• #35169 - SecurityExceptions thrown in Panache Before/After Listeners result in Internal Server errors
• #38281 - Bubble up WebApplicationExceptions and SecurityExceptions in RestDataResourceMethodListener implementations
• #50504 - Azure function host.json default bundle versions must be updated tu supported version
• #53143 - Bump org.jboss.logmanager:jboss-logmanager from 3.2.1.Final to 3.2.2.Final
• #53252 - Add the lacking guide for new quickstart
• #53347 - Fix Azure-functions: update default ExtensionBundle to [4.0.0, 5.0.0)
• #53438 - [Kubernetes] RBAC-related resources cannot be provided manually and then augmented by the extension
• #53572 - Fix jaeger container docs
• #53577 - Bump io.micrometer:micrometer-bom from 1.16.3 to 1.16.5
• #53731 - Saving config through DevUI duplicates config in application.properties
• #53732 - Fix duplicate config additions with JsonRPC
• #53737 - Handle edge-case with kapt plugin missing generated sources
• #53748 - OIDC: ContextNotActiveException during concurrent token refresh
• #53749 - Include extension categories in composed skill frontmatter
• #53762 - Fix CDI request context not active during concurrent token refresh
• #53765 - [Reflection-free Jackson serdes] @JsonTypeInfo discriminator missing + @JsonUnwrapped broken when inner type has generated serialiser
• #53778 - Share even more code between deployment resource decorators
• #53786 - Latest LTS and Java 25 - jib container entrypoint changed from run-java.sh regardless of aot or jar type
• #53787 - Mark UBI9_JAVA25 as containsJavaRun
• #53794 - Do not contaminate dev services with config from other dev services
• #53797 - quarkus-openshift emits both Deployment and DeploymentConfig` dual pods spawn in cluster
• #53800 - Update to Kotlin 2.3.21
• #53801 - Update RESTEasy Classic to 6.2.16.Final
• #53805 - Make it possible to provide RBAC resources skeleton in kubernetes.yml
• #53806 - Make MultiRootPathTree.apply() consistent with accept()
• #53812 - Using @ConfigProperty with Google Cloud Function throws Exception when executing QuarkusTest
• #53818 - quarkus-jackson: Unconditional native image registration of SQL/XML serializers bloats binary
• #53819 - Use reachability-based registration for Jackson SQL/XML serializers in native image
• #53821 - Properly close InputStream in loadQuarkusProperties
• #53822 - Revert "Enable reflection-free Jackson serializers by default"
• #53824 - Use proper CL when running Google Cloud Functions
• #53827 - Existing role rules are not taken into account when using an input manifest as starting point
• #53828 - Merge rules coming from extensions with ones from input manifests
• #53829 - Keep type info for polymorphic collections in generated Jackson serializers and correctly wires its serialization with the Jackson's mechanism
• #53833 - @PermissionsChecker methods require at least one parameter
• #53835 - Bump keycloak-client.version from 26.0.8 to 26.0.9
• #53838 - Bump testcontainers.version from 2.0.4 to 2.0.5
• #53842 - Bump commons-io:commons-io from 2.21.0 to 2.22.0
• #53857 - Allow permission checkers without method parameters
• #53858 - Upgrade Maven to 3.9.15
• #53863 - Support @JsonUnwrapped and @JsonSubTypes annotations in generated reflection-free Jackson serializers
• #53881 - Bump com.google.cloud.functions:functions-framework-api from 2.0.0 to 2.0.1

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.201...7.21.0-rc.202

Full Changelog: https://github.com/Activiti/Activiti/compare/7.21.0-rc.200...7.21.0-rc.201

In this release we drop support for Android API level 22 or lower (Lollipop or earlier), following Google Play Service’s discontinued updates for Lollipop (API levels 21 & 22) and now requires a minimum of API level 23 (Android 6.0 Marshmallow).

API Changes

• api: Deprecated LoadBalancer.handleResolvedAddresses(). Developers maintaining custom LoadBalancer implementations should transition to using LoadBalancer.acceptResolvedAddresses(). Unlike the deprecated method, acceptResolvedAddresses() returns a Status object, allowing the load balancer to explicitly report success or reject the update if the provided addresses or configuration are invalid. (#11623)

Behavior Changes

• core: Enable dns "caching" on Android for 30 seconds to reduce CPU impact of a refresh loop with an LB policy (0675f70af). DnsNameResolver ignores re-resolution requests on OpenJDK-like platforms if it has been too soon since the last DNS query because InetAddress.getAllByName() has a cache with a fixed entry lifetime, but this logic was disabled for Android which does not have that style of cache. Android’s cache uses the result TTL, which will rarely be less than 30 seconds. This change would probably be most noticeable when 1) changing to a different network (e.g., from wifi to mobile), 2) the server has different addresses for different networks, and 3) the app is not using AndroidChannelBuilder with an android.context.Context. For reference, it seems Chrome caches for 1 minute

Bug Fixes

• opentelemetry: fixes baggage propagation, the baggage propagation for opentelemetry introduced in #12389 was broken. The context is decided once and used for all recording for the call, thus guaranteeing all record()s have consistent information.
• core: Addresses a race condition where ManagedChannelOrphanWrapper could incorrectly log a "not shutdown properly" warning during garbage collection when using directExecutor(). (#12705) (d459338d9)
• xds: fixes xDS HTTP CONNECT's transport socket name bug which is now corrected to use typeUrl. (#12740) (eac9fe961)
• xds**:** Fixed an issue where subchannel metrics were dropping their association with the backend_service. This ensures xDS load balancing metrics are reported accurately. (#12735)

New Features

• netty: adds tcp metrics, by implementing a few of the metrics defined in A80.
• api: Add a CallOption for a custom label on per-RPC metrics (0e39b2967). This CallOption is copied by grpc-opentelemetry to the grpc.client.call.custom label as defined by gRFC A108. See also the gRPC OpenTelemetry Metrics guide (update in-progress)
• xds: Added support for Weighted Round Robin (WRR) load balancing driven by custom backend metrics, implementing the behavior defined in gRFC A114. (#12645)
• util**:** Updated AdvancedTlsX509KeyManager so that developers can now preserve and use key aliases when dynamically reloading TLS certificates. (#12686)

Documentation

• Updates the "Outgoing Flow Control" section in the Manual Flow Control example to say onNext() does not block, but rather queues the messages in memory and advises developers to use CallStreamObserver.isReady() to prevent this memory exhaustion (#12700) (a3a9ffcbe) (#12726) (65ae2efda)
• examples: Clean up Health example, and document need for grpc-services (3ed732fc0)

Dependencies

• Upgrade Dependencies (#12719) (16e17abba). Google-auth-library: 1.42.1, animal-sniffer: 1.27, assertj-core:3.27.7, error_prone_annotations:2.48.0, proto-google-common-protos:2.64.1, google-cloud-logging:3.23.10, jetty-http2-server:12.1.7, jetty-ee10-servlet:12.1.7, lincheck:3.4, opentelemetry-api:1.60.1, opentelemetry-exporter-prometheus:1.60.1-alpha, opentelemetry-gcp-resources:1.54.0-alpha, opentelemetry-sdk-extension-autoconfigure:1.60.1, opentelemetry-sdk-testing:1.60.1, robolectric:4.16.1, tomcat-embed-core:10.1.52, tomcat-embed-core9: 9.0.115,
• Upgrade Netty to 4.1.132 and netty-tcnative to 2.0.75 (1528f809c)

Thanks to

• @becomeStar
• @benjaminp
• @JoeCqupt
• @Kainsin
• @merlimat
• @SreeramdasLavanya
• @themechbro
• @zhangweikop

• 541449d: [dotnet][rb][java][js][py] Automated Browser Version Update (#17406) (Selenium CI Bot) #17406