Bump org.springframework.data:spring-data-commons from 4.0.5 to 4.1.0

[dependabot]

Bumps org.springframework.data:spring-data-commons from 4.0.5 to 4.1.0.

Release notes

Sourced from org.springframework.data:spring-data-commons's releases.

4.1.0

📗 Links

• Spring Data Commons 4.1.0 Reference documentation
• Spring Data Commons 4.1.0 Javadoc

⭐ New Features

• Consider filter configuration in AotMappingContext #3475
• Add TypedPropertyPathFeature to lambda reachability metadata #3466
• Stop supporting params not annotated with @ProjectedPayload #3453
• Eagerly initialize auditing metadata for known persistent entities #3442
• Auditing causes global lock contention during first initialization under high concurrency #3441
• Use shared instance of DefaultParameterNameDiscoverer #3432
• Set ApplicationEventPublisher on repository factory if it implements ApplicationEventPublisherAware #3424
• Introduce first-class type-safe property path references at the core level #3409
• Introduce first-class type-safe property path references at the core level #3400
• Stop supporting params that are not annotated with @ProjectedPayload (4.1.x) #3301
• Stop proxying non-annotated web handler method params #3298
• Migrate to JSpecify annotations for nullability constraints #3170
• Add nullHandling to @SortDefault #3153
• Allow specifying default null handling for Sort resolution #3152
• Add @Transient properties to PersistentEntity and use value defaulting for transient constructor properties #2985

🐞 Bug Fixes

• Skip type inspection for transient properties. #3486
• Exception trying to persist transient field when using MongoDb #3485
• AotMappingContext needs to consider type filter configuration #3474
• ClassGeneratingPropertyAccessorFactory fails to generate property accessor for types with static with… methods #3472
• Ignore events of unrelated BeanFactory in DeferredRepositoryInitializationListener #3461
• DeferredRepositoryInitializationListener triggers repository initialization on child context events #3459
• Render method parameter annotations in AOT repositories #3458
• Remove Assert#notNull for nullable Link #3454
• Incorrect null assertion in SlicedResourcesAssembler.toEmptyModel #3452
• Retrieve Environment via RegisteredBean #3415
• Retrieve Environment from RegisteredBean #3414
• ReturnedClass eagerly resolves input parameters resulting in logging for parameters that are potentially not required #3410

📔 Documentation

• Update Documentation #3484
• Refine public API Javadoc descriptions #3465
• Fix missing braces #3462
• Fix a/an in Javadoc #3440
• Refine Fluent Query reference documentation #3419
• Update reactive auditing documentation considering Authentication can be null #3413
• Fix incorrect or incomplete Javadoc in public APIs #2602
• Refine Antora-build #2797
• Add Readme templates #2758

🔨 Dependency Upgrades

• Upgrade to Maven Wrapper 3.9.16 #3489
• Upgrade to Kotlin 2.3.20-RC2 #2813

... (truncated)

Commits

• e00e589 Release version 4.1 GA (2026.0.0).
• 29ea489 Update Reference Documentation.
• 9ae4bf9 Use ConcurrentLruCache in PersistentPropertyPathFactory.
• 56685ec Init MapDataBinder with custom collection limit.
• e377d6b Consistently apply max traversal depth.
• 28b51c6 Use LRU cache for capturing type alias.
• 1fa89f9 Initialize properties of a type in one pass in TypeDiscoverer.
• 9d91f74 Upgrade to Maven Wrapper 3.9.16.
• 4a29958 Upgrade test dependencies.
• 4b12284 Refine GitHub Actions workflows.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)