antville/helma
antville/helma
1
1
Fork 0
Code Issues 5 Pull requests 5 Projects Releases 5 Activity Actions

build(deps): bump org.eclipse.jetty:jetty-servlet from 9.4.50.v20221201 to 9.4.51.v20230217 #65

Merged
dependabot[bot] merged 1 commit from dependabot/gradle/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217 into helma-🐜 2023-08-26 19:44:38 +00:00
Conversation 0 Commits 1 Files changed 1 +1 -1
dependabot[bot] commented 2023-05-22 09:57:55 +00:00 (Migrated from github.com)
Copy link

Bumps org.eclipse.jetty:jetty-servlet from 9.4.50.v20221201 to 9.4.51.v20230217.

Release notes

Sourced from org.eclipse.jetty:jetty-servlet's releases.

9.4.51.v20230217

Sponsored Release

This is a release of the End of Community Support Jetty 9.x series that was sponsored by a support contract from Webtide.com

Changelog

  • #9352 - Update / Fix CookieCutter
  • #9345 - Backport Multipart Fix for CVE-2023-26048
  • #9352 - Backport Cookie Parsing Fix for CVE-2023-26049

Dependencies

  • #9269 - Bump ant.version to 1.10.13
  • #9370 - Bump asciidoctorj-diagram to 2.2.4
  • #9364 - Bump eclipse-jarsigner-plugin to 1.4.2
  • #9251 - Bump infinispan.version to 11.0.17.Final
  • #9247 - Bump maven-checkstyle-plugin to 3.2.1
  • #9267 - Bump maven-dependency-plugin to 3.5.0
  • #9365 - Bump maven-deploy-plugin to 3.1.0
  • #9252 - Bump maven-enforcer-plugin to 3.2.1
  • #9363 - Bump maven-invoker-plugin to 3.5.0
  • #9266 - Bump maven-plugin-plugin to 3.7.1
  • #9263 - Bump maven.plugin-tools.version to 3.7.1
  • #9256 - Bump maven.resolver.version to 1.9.4
  • #9368 - Bump maven.surefire.plugin.version to 3.0.0-M9
  • #9362 - Bump maven.version to 3.9.0
  • #9100 - Bump org.apache.aries.spifly.dynamic.bundle to 1.3.6
  • #9103 - Bump org.eclipse.osgi to 3.18.200
  • #9110 - Bump org.eclipse.osgi.services to 3.11.100
  • #9262 - Bump spring-beans to 5.3.25
Commits
  • b45c405 Updating to version 9.4.51.v20230217
  • 3beaa81 Merge pull request #9368 from eclipse/dependabot/maven/jetty-9.4.x/maven.sure...
  • d382683 Merge pull request #9370 from eclipse/dependabot/maven/jetty-9.4.x/org.asciid...
  • d52d133 Bump maven.surefire.plugin.version from 3.0.0-M8 to 3.0.0-M9
  • 1bc959a Merge pull request #9365 from eclipse/dependabot/maven/jetty-9.4.x/org.apache...
  • 08c89c7 Merge pull request #9364 from eclipse/dependabot/maven/jetty-9.4.x/org.eclips...
  • 2a30aca Merge pull request #9363 from eclipse/dependabot/maven/jetty-9.4.x/org.apache...
  • 6ab783d Merge pull request #9362 from eclipse/dependabot/maven/jetty-9.4.x/maven.vers...
  • 722781d Issue #9181 NPE in SessionHandler (#9346)
  • 922b84b Bump asciidoctorj-diagram from 2.2.3 to 2.2.4
  • Additional commits viewable in compare view

Dependabot compatibility score

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Note

Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

Bumps [org.eclipse.jetty:jetty-servlet](https://github.com/eclipse/jetty.project) from 9.4.50.v20221201 to 9.4.51.v20230217. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/eclipse/jetty.project/releases">org.eclipse.jetty:jetty-servlet's releases</a>.</em></p> <blockquote> <h2>9.4.51.v20230217</h2> <h1>Sponsored Release</h1> <p>This is a release of the <a href="https://redirect.github.com/eclipse/jetty.project/issues/7958">End of Community Support Jetty 9.x series</a> that was sponsored by a <a href="https://github.com/eclipse/jetty.project/blob/HEAD/mailto:sales@webtide.com">support contract from Webtide.com</a></p> <h1>Changelog</h1> <ul> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9352">#9352</a> - Update / Fix CookieCutter</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9345">#9345</a> - Backport Multipart Fix for CVE-2023-26048</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9352">#9352</a> - Backport Cookie Parsing Fix for CVE-2023-26049</li> </ul> <h1>Dependencies</h1> <ul> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9269">#9269</a> - Bump ant.version to 1.10.13</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9370">#9370</a> - Bump asciidoctorj-diagram to 2.2.4</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9364">#9364</a> - Bump eclipse-jarsigner-plugin to 1.4.2</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9251">#9251</a> - Bump infinispan.version to 11.0.17.Final</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9247">#9247</a> - Bump maven-checkstyle-plugin to 3.2.1</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9267">#9267</a> - Bump maven-dependency-plugin to 3.5.0</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9365">#9365</a> - Bump maven-deploy-plugin to 3.1.0</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9252">#9252</a> - Bump maven-enforcer-plugin to 3.2.1</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9363">#9363</a> - Bump maven-invoker-plugin to 3.5.0</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9266">#9266</a> - Bump maven-plugin-plugin to 3.7.1</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9263">#9263</a> - Bump maven.plugin-tools.version to 3.7.1</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9256">#9256</a> - Bump maven.resolver.version to 1.9.4</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9368">#9368</a> - Bump maven.surefire.plugin.version to 3.0.0-M9</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9362">#9362</a> - Bump maven.version to 3.9.0</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9100">#9100</a> - Bump org.apache.aries.spifly.dynamic.bundle to 1.3.6</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9103">#9103</a> - Bump org.eclipse.osgi to 3.18.200</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9110">#9110</a> - Bump org.eclipse.osgi.services to 3.11.100</li> <li><a href="https://redirect.github.com/eclipse/jetty.project/issues/9262">#9262</a> - Bump spring-beans to 5.3.25</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/eclipse/jetty.project/commit/b45c405e4544384de066f814ed42ae3dceacdd49"><code>b45c405</code></a> Updating to version 9.4.51.v20230217</li> <li><a href="https://github.com/eclipse/jetty.project/commit/3beaa8158c589da77ff35af90a52225b938abdb8"><code>3beaa81</code></a> Merge pull request <a href="https://redirect.github.com/eclipse/jetty.project/issues/9368">#9368</a> from eclipse/dependabot/maven/jetty-9.4.x/maven.sure...</li> <li><a href="https://github.com/eclipse/jetty.project/commit/d382683e2be1dc7527bd628df988b3e27147a94a"><code>d382683</code></a> Merge pull request <a href="https://redirect.github.com/eclipse/jetty.project/issues/9370">#9370</a> from eclipse/dependabot/maven/jetty-9.4.x/org.asciid...</li> <li><a href="https://github.com/eclipse/jetty.project/commit/d52d1336da67fac3a2f7a5889d5207c78d33c389"><code>d52d133</code></a> Bump maven.surefire.plugin.version from 3.0.0-M8 to 3.0.0-M9</li> <li><a href="https://github.com/eclipse/jetty.project/commit/1bc959a9c3be3769ec59660df74663ceaf586ea7"><code>1bc959a</code></a> Merge pull request <a href="https://redirect.github.com/eclipse/jetty.project/issues/9365">#9365</a> from eclipse/dependabot/maven/jetty-9.4.x/org.apache...</li> <li><a href="https://github.com/eclipse/jetty.project/commit/08c89c797abef55c0a500e4440c6055e1f97ed90"><code>08c89c7</code></a> Merge pull request <a href="https://redirect.github.com/eclipse/jetty.project/issues/9364">#9364</a> from eclipse/dependabot/maven/jetty-9.4.x/org.eclips...</li> <li><a href="https://github.com/eclipse/jetty.project/commit/2a30acaffef584a11c1a53b371ee6ee7535d0566"><code>2a30aca</code></a> Merge pull request <a href="https://redirect.github.com/eclipse/jetty.project/issues/9363">#9363</a> from eclipse/dependabot/maven/jetty-9.4.x/org.apache...</li> <li><a href="https://github.com/eclipse/jetty.project/commit/6ab783d9c810f1a1e4469244e8194111c19345f4"><code>6ab783d</code></a> Merge pull request <a href="https://redirect.github.com/eclipse/jetty.project/issues/9362">#9362</a> from eclipse/dependabot/maven/jetty-9.4.x/maven.vers...</li> <li><a href="https://github.com/eclipse/jetty.project/commit/722781d7517c8d769764941af14ade9cb649a41a"><code>722781d</code></a> Issue <a href="https://redirect.github.com/eclipse/jetty.project/issues/9181">#9181</a> NPE in SessionHandler (<a href="https://redirect.github.com/eclipse/jetty.project/issues/9346">#9346</a>)</li> <li><a href="https://github.com/eclipse/jetty.project/commit/922b84b1d8e795f74aa026e952335f525b3f622b"><code>922b84b</code></a> Bump asciidoctorj-diagram from 2.2.3 to 2.2.4</li> <li>Additional commits viewable in <a href="https://github.com/eclipse/jetty.project/compare/jetty-9.4.50.v20221201...jetty-9.4.51.v20230217">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=org.eclipse.jetty:jetty-servlet&package-manager=gradle&previous-version=9.4.50.v20221201&new-version=9.4.51.v20230217)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) You can trigger a rebase of this PR by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> > **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.
Sign in to join this conversation.
Reviewers
No reviewers
Labels
Clear labels   
blocker

   
core

   
dependency

Pull request that updates a dependency file

  
major

   
needs-work

   
runtime

   
security

   
urgent
No labels
blocker
core
dependency
major
needs-work
runtime
security
urgent
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: antville/helma#65
No description provided.
Delete branch "dependabot/gradle/org.eclipse.jetty-jetty-servlet-9.4.51.v20230217"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?