Bump the maven-patch-group group across 1 directory with 4 updates

[dependabot]

Bumps the maven-patch-group group with 4 updates in the / directory: org.eclipse.jetty:jetty-bom, org.eclipse.jetty.ee11:jetty-ee11-bom, org.graalvm.js:js-scriptengine and org.graalvm.js:js-community.

Updates org.eclipse.jetty:jetty-bom from 12.1.2 to 12.1.3

Release notes

Sourced from org.eclipse.jetty:jetty-bom's releases.

12.1.3

Changelog

• #13768 - Sanitizing of HTTP headers names and values should remove NUL bytes (U+0000)
• #13708 - Improve StateTrackingHandler reporting of incomplete callbacks
• #13703 - MailSessionReference is not dereferenced in JNDI lookup
• #13683 - Badly pct-encoded Shift-JIS is not supported by Jetty 12
• #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent
• #13681 - QUICHE_ERR_STREAM_LIMIT with Jetty 12.1.2 on HTTP/3
• #13634 - Avoid sending RST_STREAM for closed streams
• #13626 - WebAppContext.setExtraClasspath(String) entry separator
• #13615 - Concurrency issue, headers from different requests are mixed in Jetty 12.0.27
• #13613 - HttpInput#read rethrows already thrown exception, leading to possible self-suppressing exception issue
• #13588 - CONTAINER_JAR_PATTERN ignored on Windows
• #13246 - Missing hook or statistic for QoSHandler rejections by exceeding setMaxSuspendedRequestCount

Commits

• f8d520d Updating to version 12.1.3
• 90398a6 Issue #13703 dereference MailSessionReference (#13710)
• 1955807 Fix #14685 by handling zero length resources
• 148a368 Fixes #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent.
• 76eedf8 Fixes #13246 - Missing hook or statistic for QoSHandler rejections by exceedi...
• 93be060 Merge pull request #13767 from jetty/fix/jetty-12.1.x/13615-mixed-headers
• c17aa18 Issue #13768 - Sanitizing HTTP/1.x Header Name and Value better (#13769)
• 679e5df Make ContextHandler catch and ignore exceptions thrown by `Thread.setContex...
• e4a0673 Merge pull request #13779 from jetty/fix/12.1.x/dependabot-improve-ignores
• ba93a9a group with root, jetty-core and jetty-integrations
• Additional commits viewable in compare view

Updates org.eclipse.jetty.ee11:jetty-ee11-bom from 12.1.2 to 12.1.3

Release notes

Sourced from org.eclipse.jetty.ee11:jetty-ee11-bom's releases.

12.1.3

Changelog

• #13768 - Sanitizing of HTTP headers names and values should remove NUL bytes (U+0000)
• #13708 - Improve StateTrackingHandler reporting of incomplete callbacks
• #13703 - MailSessionReference is not dereferenced in JNDI lookup
• #13683 - Badly pct-encoded Shift-JIS is not supported by Jetty 12
• #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent
• #13681 - QUICHE_ERR_STREAM_LIMIT with Jetty 12.1.2 on HTTP/3
• #13634 - Avoid sending RST_STREAM for closed streams
• #13626 - WebAppContext.setExtraClasspath(String) entry separator
• #13615 - Concurrency issue, headers from different requests are mixed in Jetty 12.0.27
• #13613 - HttpInput#read rethrows already thrown exception, leading to possible self-suppressing exception issue
• #13588 - CONTAINER_JAR_PATTERN ignored on Windows
• #13246 - Missing hook or statistic for QoSHandler rejections by exceeding setMaxSuspendedRequestCount

Commits

• f8d520d Updating to version 12.1.3
• 90398a6 Issue #13703 dereference MailSessionReference (#13710)
• 1955807 Fix #14685 by handling zero length resources
• 148a368 Fixes #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent.
• 76eedf8 Fixes #13246 - Missing hook or statistic for QoSHandler rejections by exceedi...
• 93be060 Merge pull request #13767 from jetty/fix/jetty-12.1.x/13615-mixed-headers
• c17aa18 Issue #13768 - Sanitizing HTTP/1.x Header Name and Value better (#13769)
• 679e5df Make ContextHandler catch and ignore exceptions thrown by `Thread.setContex...
• e4a0673 Merge pull request #13779 from jetty/fix/12.1.x/dependabot-improve-ignores
• ba93a9a group with root, jetty-core and jetty-integrations
• Additional commits viewable in compare view

Updates org.eclipse.jetty.ee11:jetty-ee11-bom from 12.1.2 to 12.1.3

Release notes

Sourced from org.eclipse.jetty.ee11:jetty-ee11-bom's releases.

12.1.3

Changelog

• #13768 - Sanitizing of HTTP headers names and values should remove NUL bytes (U+0000)
• #13708 - Improve StateTrackingHandler reporting of incomplete callbacks
• #13703 - MailSessionReference is not dereferenced in JNDI lookup
• #13683 - Badly pct-encoded Shift-JIS is not supported by Jetty 12
• #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent
• #13681 - QUICHE_ERR_STREAM_LIMIT with Jetty 12.1.2 on HTTP/3
• #13634 - Avoid sending RST_STREAM for closed streams
• #13626 - WebAppContext.setExtraClasspath(String) entry separator
• #13615 - Concurrency issue, headers from different requests are mixed in Jetty 12.0.27
• #13613 - HttpInput#read rethrows already thrown exception, leading to possible self-suppressing exception issue
• #13588 - CONTAINER_JAR_PATTERN ignored on Windows
• #13246 - Missing hook or statistic for QoSHandler rejections by exceeding setMaxSuspendedRequestCount

Commits

• f8d520d Updating to version 12.1.3
• 90398a6 Issue #13703 dereference MailSessionReference (#13710)
• 1955807 Fix #14685 by handling zero length resources
• 148a368 Fixes #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent.
• 76eedf8 Fixes #13246 - Missing hook or statistic for QoSHandler rejections by exceedi...
• 93be060 Merge pull request #13767 from jetty/fix/jetty-12.1.x/13615-mixed-headers
• c17aa18 Issue #13768 - Sanitizing HTTP/1.x Header Name and Value better (#13769)
• 679e5df Make ContextHandler catch and ignore exceptions thrown by `Thread.setContex...
• e4a0673 Merge pull request #13779 from jetty/fix/12.1.x/dependabot-improve-ignores
• ba93a9a group with root, jetty-core and jetty-integrations
• Additional commits viewable in compare view

Updates org.graalvm.js:js-scriptengine from 25.0.0 to 25.0.1

Release notes

Sourced from org.graalvm.js:js-scriptengine's releases.

GraalJS 25.0.1

GraalJS is an ECMAScript-compliant runtime to execute JavaScript and Node.js applications. It is fully standard-compliant, executes applications with high performance, and provides all benefits from the GraalVM stack, including language interoperability and common tooling.

GraalJS version 25.0.1 is designed for use with Oracle GraalVM 25.0.1 or GraalVM Community Edition 25.0.1, and can be downloaded separately.

There are two standalone types to choose from:

• Native Standalone: This contains a Native Image compiled launcher
• JVM Standalone: This contains JavaScript in the JVM configuration

To distinguish between them, the GraalVM Community Edition version has the suffix -community in its name. A JVM standalone has a -jvm suffix in its name.

Learn more about GraalJS and how to get started on the website at https://www.graalvm.org/javascript/.

† Support for macOS x64 is deprecated. Version 25.0.1 is the last release that supports this hardware architecture. In future, GraalVM will only support macOS on AArch64 (Apple Silicon).

Changelog

Sourced from org.graalvm.js:js-scriptengine's changelog.

GraalJS Changelog

This changelog summarizes major changes between GraalVM versions of the GraalVM JavaScript (ECMAScript) language runtime. The main focus is on user-observable behavior of the engine. Changelog may include unreleased versions. See release calendar for release dates.

Version 25.1.0

• Removed support and builds for macOS x86-64 (darwin-amd64).
• Added an experimental option js.crypto that provides getRandomValues() and randomUUID() from the Web Crypto API.
• Added stable option js.performance that provides performance.now(), timeOrigin, and toJSON() from the Web High Resolution Time API.
• Implemented the Immutable ArrayBuffers proposal. It is available in ECMAScript staging mode (--js.ecmascript-version=staging).

Commits

• 629f33f release GraalVM 25.0.1
• b55cf7d [GR-69371] [GR-69405] Release GraalVM 25.0.0 and start 25.0.1 dev cycle.
• 9ef660b Start 25.0.1 dev cycle.
• See full diff in compare view

Updates org.graalvm.js:js-community from 25.0.0 to 25.0.1

Commits

• 05ec025 release GraalVM 25.0.1
• 6ea8be5 [GR-69464] Backport to 25.0: Evaluate Merge Explode PE without ProxyPlaceHold...
• 32edf14 [GR-69811] Backport to 25.0: Mark compiler threads as crashed in both isolates.
• e179587 [GR-68927] Backport to 25.0: Analyze and Fix Tier 2 Compile Times on function...
• 386311f [GR-69429] Backport to 25.0: Speed up LinearScan lifetime analysis by compres...
• 5f699a0 Drop metric changes
• 26a139b late proxy generation: improvements.
• 921a2d3 partial evluation: create proxies after PE not during.
• 579c737 Adapt fix
• 92a598b Review comments
• Additional commits viewable in compare view

Updates org.graalvm.js:js-community from 25.0.0 to 25.0.1

Commits

• 05ec025 release GraalVM 25.0.1
• 6ea8be5 [GR-69464] Backport to 25.0: Evaluate Merge Explode PE without ProxyPlaceHold...
• 32edf14 [GR-69811] Backport to 25.0: Mark compiler threads as crashed in both isolates.
• e179587 [GR-68927] Backport to 25.0: Analyze and Fix Tier 2 Compile Times on function...
• 386311f [GR-69429] Backport to 25.0: Speed up LinearScan lifetime analysis by compres...
• 5f699a0 Drop metric changes
• 26a139b late proxy generation: improvements.
• 921a2d3 partial evluation: create proxies after PE not during.
• 579c737 Adapt fix
• 92a598b Review comments
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions