Bump hibernate.version from 5.4.23.Final to 5.4.24.Final

[dependabot-preview]

Bumps hibernate.version from 5.4.23.Final to 5.4.24.Final.
Updates hibernate-core from 5.4.23.Final to 5.4.24.Final

Changelog

Sourced from hibernate-core's changelog.

Changes in 5.4.24.Final (November 17, 2020)

https://hibernate.atlassian.net/projects/HHH/versions/31892

** Bug * [HHH-14333] - Pessimistic Lock causes FOR UPDATE on outer join statements * [HHH-14329] - DirtinessTracker usage for enhanced entities doesn't respect mutable types * [HHH-14322] - HBM many-to-one property-ref broken since 5.3.2 due to HHH-12684 * [HHH-14317] - Avoid closing datasource in AgroalConnectionProvider if datasource is not initialized * [HHH-14316] - Avoid accessing state in DriverManagerConnectionProviderImpl if null * [HHH-14312] - Padded batch style entity loader ignores entity graph * [HHH-14310] - Document hibernate.query.in_clause_parameter_padding * [HHH-14288] - Complex batch insert query stopped to work * [HHH-14279] - Broken 'with key(...)' operator on entity-key maps * [HHH-14276] - Nested ID class using derived identifiers fails with strange AnnotationException: unable to find column reference in the @MapsId mapping: game_id * [HHH-14257] - An Entity A with a map collection having as index an Embeddable with a an association to the Entity A fails with a NPE * [HHH-13310] - getParameterValue() not working for collections

** Improvement * [HHH-14332] - Make it easier for Quarkus SPI to avoid loading XML * [HHH-14325] - Add Query hint for specifying "query spaces" for native queries * [HHH-14158] - Upgrade Javassist to the latest version

** Task * [HHH-14324] - Add .gradletasknamecache to .gitignore * [HHH-14309] - Improve BulkOperationCleanupAction#affectedEntity * [HHH-14225] - CVE-2020-25638 Potential for SQL injection on use_sql_comments logging enabled

Commits

• 0b5d3a2 5.4.24.Final
• 33123d2 HHH-14333 Pessimistic Lock causes FOR UPDATE on outer join statements
• 84e37c1 HHH-14332 Make it easier for Quarkus SPI to avoid loading XML related resources
• da8706e HHH-14329 Amend existing DirtyTrackingTest
• 2669848 HHH-14329 consider mutable types always as potentially dirty when using Dirti...
• 5ea0d92 HHH-14329 test case showing that DirtinessTracker usage for enhanced entities...
• c444d5f HHH-14325 - Add Query hint for specifying "query spaces" for native queries
• 49ae7bd HHH-14325 - Add Query hint for specifying "query spaces" for native queries
• fe2230f HHH-14276 Amend style and formatting
• a8fdb4d HHH-14276 Avoid quoting column name for looking up references during composit...
• Additional commits viewable in compare view

Updates hibernate-spatial from 5.4.23.Final to 5.4.24.Final

Changelog

Sourced from hibernate-spatial's changelog.

Changes in 5.4.24.Final (November 17, 2020)

https://hibernate.atlassian.net/projects/HHH/versions/31892

** Bug * [HHH-14333] - Pessimistic Lock causes FOR UPDATE on outer join statements * [HHH-14329] - DirtinessTracker usage for enhanced entities doesn't respect mutable types * [HHH-14322] - HBM many-to-one property-ref broken since 5.3.2 due to HHH-12684 * [HHH-14317] - Avoid closing datasource in AgroalConnectionProvider if datasource is not initialized * [HHH-14316] - Avoid accessing state in DriverManagerConnectionProviderImpl if null * [HHH-14312] - Padded batch style entity loader ignores entity graph * [HHH-14310] - Document hibernate.query.in_clause_parameter_padding * [HHH-14288] - Complex batch insert query stopped to work * [HHH-14279] - Broken 'with key(...)' operator on entity-key maps * [HHH-14276] - Nested ID class using derived identifiers fails with strange AnnotationException: unable to find column reference in the @MapsId mapping: game_id * [HHH-14257] - An Entity A with a map collection having as index an Embeddable with a an association to the Entity A fails with a NPE * [HHH-13310] - getParameterValue() not working for collections

** Improvement * [HHH-14332] - Make it easier for Quarkus SPI to avoid loading XML * [HHH-14325] - Add Query hint for specifying "query spaces" for native queries * [HHH-14158] - Upgrade Javassist to the latest version

** Task * [HHH-14324] - Add .gradletasknamecache to .gitignore * [HHH-14309] - Improve BulkOperationCleanupAction#affectedEntity * [HHH-14225] - CVE-2020-25638 Potential for SQL injection on use_sql_comments logging enabled

Commits

• 0b5d3a2 5.4.24.Final
• 33123d2 HHH-14333 Pessimistic Lock causes FOR UPDATE on outer join statements
• 84e37c1 HHH-14332 Make it easier for Quarkus SPI to avoid loading XML related resources
• da8706e HHH-14329 Amend existing DirtyTrackingTest
• 2669848 HHH-14329 consider mutable types always as potentially dirty when using Dirti...
• 5ea0d92 HHH-14329 test case showing that DirtinessTracker usage for enhanced entities...
• c444d5f HHH-14325 - Add Query hint for specifying "query spaces" for native queries
• 49ae7bd HHH-14325 - Add Query hint for specifying "query spaces" for native queries
• fe2230f HHH-14276 Amend style and formatting
• a8fdb4d HHH-14276 Avoid quoting column name for looking up references during composit...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)