From 6230f64fe0075bf380b5189c03aac966e61db9e4 Mon Sep 17 00:00:00 2001
From: Julian Psotta <julian.psotta@heigit.org>
Date: Thu, 27 Apr 2023 10:57:03 +0200
Subject: [PATCH 1/2] fix(pom,cve): Bump spring-boot to 2.7.11

High CVE-2023-20873 is fixed in spring-boot 2.7.11.
---
 openrouteservice/pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/openrouteservice/pom.xml b/openrouteservice/pom.xml
index 0a797a84ae..d1911f5be0 100644
--- a/openrouteservice/pom.xml
+++ b/openrouteservice/pom.xml
@@ -66,7 +66,7 @@
     <parent>
         <groupId>org.springframework.boot</groupId>
         <artifactId>spring-boot-starter-parent</artifactId>
-        <version>2.7.10</version>
+        <version>2.7.11</version>
     </parent>
     <build>
         <finalName>ors</finalName>

From 971cb8daa5cefff083891a9ff1e6057320051b34 Mon Sep 17 00:00:00 2001
From: Julian Psotta <julian.psotta@heigit.org>
Date: Thu, 27 Apr 2023 10:58:22 +0200
Subject: [PATCH 2/2] documentation(changelog): Add changelog for spring-boot
 bump to 2.7.11

---
 CHANGELOG.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8aa2b10aef..79aef9afe6 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -51,6 +51,7 @@ RELEASING:
 - upgrade spring-boot from 2.7.9 to 2.7.10  ([#1372](https://github.com/GIScience/openrouteservice/pull/1372))
 - upgrade graphhopper version to v4.4 for correct flushing of graph storages [#1378](https://github.com/GIScience/openrouteservice/pull/1378)
 - Handle warning regarding transient dependencies [#1383](https://github.com/GIScience/openrouteservice/issues/1383)
+- Bump spring-boot to 2.7.11 [#1416](https://github.com/GIScience/openrouteservice/pull/1416)
 
 ## [7.0.1] - 2023-03-08
 ### Fixed