No one commented on this, but this also happens when we have dependencies on spring-security-web, spring core, and spring-security-config in different versions, execute a `mvn dependency:tree` and ensure this...