Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump jetty-io from 9.4.35.v20201120 to 11.0.2 #5

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump jetty-io from 9.4.35.v20201120 to 11.0.2 #5

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Apr 21, 2021

Bumps jetty-io from 9.4.35.v20201120 to 11.0.2.

Release notes

Sourced from jetty-io's releases.

11.0.2

Changelog

⚠️ Important Security related Changes

Other Changes

  • #4275 - Path Normalization/Traversal - Context Matching
  • #5828 - Allow to create a WebSocketContainer passing HttpClient
  • #5832 - Ctrl-C after jetty:run produces NoClassDefFoundError
  • #5835 - Review Durable Filters, Servlets and Listeners
  • #5977 - Cache-Control header set by a filter is override by the value from DefaultServlet configuration
  • #5994 - QueuedThreadPool "free" threads
  • #5996 - ERROR : No module found to provide logback-impl for logback-access{enabled}
  • #5999 - HttpURI ArrayIndexOutOfBounds
  • #6001 - Ambiguous URI legacy compliance mode
  • #6008 - Allow absolute paths to be provided in start.ini for request log directory.
  • #6011 - OSGi Cannot start Jetty with osgi.boot - Configurations add wrong method taken
  • #6020 - Review Jetty Maven Plugin scanning defaults
  • #6021 - Standardize Path resolution in XmlConfiguration
  • #6024 - Error starting jetty-10: Provider org.eclipse.jetty.websocket.javax.client.JavaxWebSocketShutdownContainer not found
  • #6026 - the jvm DEBUG flag is not working org.eclipse.jetty.LEVEL=DEBUG
  • #6034 - SslContextFactory may select a wildcard certificate during SNI selection when a more specific SSL certificate is present
  • #6037 - Review logging modules for j.u.l.
  • #6063 - Allow override of hazelcast version when using module
  • #6076 - Embedded Jetty throws null pointer exception
  • #6082 - SslConnection compacting
  • #6085 - Jetty keeps Sessions in use after "Duplicate valid session cookies" Message

11.0.1

Changelog

  • This release addresses and resolves CVE-2020-27223
  • #5993 - Change more modules to glassfish-jstl
  • #5941 - Use jakarta.servlet.jsp.jstl version 2 implementation from Eclipse Glassfish
  • #5901 - Starting Jetty with JPMS produces warnings about Servlet resources not found
  • #5761 - Remove unneeded dependencies from apache-jsp module
  • #5759 - Update jakarta transaction, mail and injection apis
  • #5752 - Fix Servlet 5 Schema redirects

11.0.0

Eclipse Jetty 11.x Highlights

  • Jetty 11.x has a minimum Java requirement of Java 11.
  • Jetty 11.x modules are proper JPMS modules with module-info.class.
  • Jetty 11.x supports the following technology specs (from the Jakarta EE 9 effort):

... (truncated)

Commits
  • 14ed9a5 Updating to version 11.0.2
  • 61b5e1a revert back to 11.0.2-SNAPSHOT
  • 03f6a31 Merge remote-tracking branch 'origin/jetty-10.0.x' into jetty-11.0.x
  • b68a5fe Merge pull request #6107 from eclipse/jetty-10.0.x-JavaxWebSocketContainerPro...
  • 47ec9b1 Modify SecureClientContainerExample to use the new getContainer(HttpClient) m...
  • a86a0c2 Add static utility methods on container to add and remove beans.
  • 57779c6 Make the HttpClient getContainer method static on JavaxWebSocketClientContain...
  • e1f2f8c Updating to version 11.0.3-SNAPSHOT
  • 0a126e2 Updating to version 11.0.2
  • e04e226 Merged branch 'jetty-10.0.x' into 'jetty-11.0.x'.
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Apr 21, 2021

The following labels could not be found: dependencies, govuk-pay, java.

@jonty-uk-gov-mirror jonty-uk-gov-mirror force-pushed the dependabot/maven/org.eclipse.jetty-jetty-io-11.0.2 branch from e444f0b to 088fa02 Compare April 22, 2021 12:17
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github May 24, 2021

A newer version of org.eclipse.jetty:jetty-io exists, but since this PR has been edited by someone other than Dependabot I haven't updated it. You'll get a PR for the updated version as normal once this PR is merged.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants