Bump org.eclipse.jetty:jetty-bom from 9.4.51.v20230217 to 12.1.3

[dependabot]

Bumps org.eclipse.jetty:jetty-bom from 9.4.51.v20230217 to 12.1.3.

Release notes

Sourced from org.eclipse.jetty:jetty-bom's releases.

12.1.3

Changelog

• #13768 - Sanitizing of HTTP headers names and values should remove NUL bytes (U+0000)
• #13708 - Improve StateTrackingHandler reporting of incomplete callbacks
• #13703 - MailSessionReference is not dereferenced in JNDI lookup
• #13683 - Badly pct-encoded Shift-JIS is not supported by Jetty 12
• #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent
• #13681 - QUICHE_ERR_STREAM_LIMIT with Jetty 12.1.2 on HTTP/3
• #13634 - Avoid sending RST_STREAM for closed streams
• #13626 - WebAppContext.setExtraClasspath(String) entry separator
• #13615 - Concurrency issue, headers from different requests are mixed in Jetty 12.0.27
• #13613 - HttpInput#read rethrows already thrown exception, leading to possible self-suppressing exception issue
• #13588 - CONTAINER_JAR_PATTERN ignored on Windows
• #13246 - Missing hook or statistic for QoSHandler rejections by exceeding setMaxSuspendedRequestCount

12.1.2

Special Thanks to the following Eclipse Jetty community members

• @​znight1020 (이현수)

Changelog

• #13640 - Fix NPE in ee9/ee8 nested.BufferedResponesHandler
• #13634 - Avoid sending RST_STREAM for closed streams
• #13625 - Not possible to control HttpClient Accept-Encoding weights with standard API and discovered Compression
• #13624 - ContextClassLoader changed on resumed requests with QoSHandler
• #13621 - Restore BufferingResponseListener.onContent(Response, ByteBuffer) behavior
• #13613 - HttpInput#read rethrows already thrown exception, leading to possible self-suppressing exception issue
• #13608 - DebugHandler changes Thread name without restoring it afterwards
• #13603 - Bad Accept-Language request headers can result in NPE during HttpServletRequest.getLocale() call
• #13599 - Merge ConstantThrowable and StaticException
• #13598 - Server hangs when client closes too many connections.
• #13592 - ClosedFileSystemException when upgrading to 12.1.1
• #13586 - Merge back Release/12.0.27
• #13583 - NPE in WriteFlusher after org.eclipse.jetty.http.BadMessageException: 417
• #13579 - How to remove a websocket mapping
• #13571 - JMX Bean Names are not predictable now that they have hashcodes
• #13567 - Jetty 12.1.1 HTTP2 broken data
• #13563 - Jetty 12.1.0 fails to serve big (> 1MiB) static web resources located inside a jar file
• #13549 - Ensure buffer is always released from HTTP/3 HeadersGenerator in case of failure.
• #13548 - Improved HTTP2Connection dump information (@​znight1020)
• #13539 - HttpCookie.Builder does not allow removing SameSite
• #13482 - New request attribute __oejs.Request.Cookies
• #13472 - Support multiple directories to be scanned by deployment-scanner
• #11826 - NativeHelper triggers JDK warning

12.1.1

Special Thanks to the following Eclipse Jetty community members

... (truncated)

Commits

• f8d520d Updating to version 12.1.3
• 90398a6 Issue #13703 dereference MailSessionReference (#13710)
• 1955807 Fix #14685 by handling zero length resources
• 148a368 Fixes #13682 - HttpClient.[maxRequest|request]HeadersSize should be consistent.
• 76eedf8 Fixes #13246 - Missing hook or statistic for QoSHandler rejections by exceedi...
• 93be060 Merge pull request #13767 from jetty/fix/jetty-12.1.x/13615-mixed-headers
• c17aa18 Issue #13768 - Sanitizing HTTP/1.x Header Name and Value better (#13769)
• 679e5df Make ContextHandler catch and ignore exceptions thrown by `Thread.setContex...
• e4a0673 Merge pull request #13779 from jetty/fix/12.1.x/dependabot-improve-ignores
• ba93a9a group with root, jetty-core and jetty-integrations
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)