Bump org.springframework.security:spring-security-bom from 5.8.10 to 5.8.11

[dependabot]

Bumps org.springframework.security:spring-security-bom from 5.8.10 to 5.8.11.

Release notes

Sourced from org.springframework.security:spring-security-bom's releases.

5.8.11

🪲 Bug Fixes

• Allow tab in HTTP header values. #14590
• Check for null Authentication #14664
• PostAuthorize Method Interceptors Should Use Order from AuthorizationInterceptorsOrder #14720
• Remove duplicate setSecurityContextHolderStrategy #14603
• Spring security's ServerLogoutHandler order problem. #14379

🔨 Dependency Upgrades

• Bump io.projectreactor.netty:reactor-netty from 1.0.41 to 1.0.43 #14730
• Bump io.projectreactor:reactor-bom from 2020.0.41 to 2020.0.42 #14729
• Bump org.springframework:spring-framework-bom from 5.3.32 to 5.3.33 #14759

❤️ Contributors

We'd like to thank all the contributors who worked on this release!

• @​chbecker2
• @​kse-music
• @​dependabot[bot]

Commits

• c8a0601 Release 5.8.11
• 2c9dc08 Merge branch '5.7.x' into 5.8.x
• 5a7f12f Check for null Authentication
• 3b355a0 Bump org.springframework:spring-framework-bom from 5.3.32 to 5.3.33
• a6d362f Make trigger-dependabot-auto-merge-forward.yml run on push
• 37984c2 Add GH_TOKEN to set-milestone
• b3a43d6 Use token only for auto merge
• a87fc4e Use pull_request_target for merge-dependabot-pr.yml
• e7bff42 Use GH_ACTIONS_REPO_TOKEN for merge-dependabot-pr.yml
• 4e6b8e4 Bump io.projectreactor:reactor-bom from 2020.0.41 to 2020.0.42
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarcloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
No data about Duplication

See analysis details on SonarCloud

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 70.45%. Comparing base (164aebf) to head (5a28abe).

Additional details and impacted files

@@            Coverage Diff             @@
##              3.2   #13993      +/-   ##
==========================================
+ Coverage   70.43%   70.45%   +0.01%     
==========================================
  Files        1607     1607              
  Lines       70075    70075              
  Branches    10100    10100              
==========================================
+ Hits        49358    49369      +11     
+ Misses      16082    16072      -10     
+ Partials     4635     4634       -1     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.