build(deps): bump spring-boot from 4.0.2 to 4.0.4

juliocastrodev · claude · juliocastrodev · commit f6293d03133d · 2026-03-23T13:51:35.000+01:00
Fixes CVE-2026-22737 (GHSA-4773-3jfm-qmx3) - Spring Framework path traversal via script view templates. Spring Boot 4.0.4 brings Spring Framework 7.0.6 which contains the fix. Closes dependabot alert #40. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
diff --git a/gradle/libs.versions.toml b/gradle/libs.versions.toml
@@ -1,6 +1,6 @@
 [versions]
 java = "21"
-spring-boot = "4.0.2"
+spring-boot = "4.0.4"
 spring-dependency-management = "1.1.7"
 openapi-generator = "7.20.0"
 openapi-tools = "0.2.9"
