6f58c0f70b
Merge remote-tracking branch 'origin/dependabot/maven/jetty-10.0.x/org.apache.avro-avro-1.11.0' into jetty-10.0.x-update-infinispan-deps
2022-01-27 12:31:25 -06:00
1f1078cf5e
Merge remote-tracking branch 'origin/dependabot/maven/jetty-10.0.x/com.fasterxml.jackson.core-jackson-core-2.13.1' into jetty-10.0.x-update-infinispan-deps
2022-01-27 12:29:30 -06:00
52a60a12dd
Fix dependency properties
...
+ Alphabetize (again)
+ Use common syntax
+ Sync all jackson dependencies to version 2.13.1
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2022-01-27 11:40:01 -06:00
43cb27b36d
Fix test compile due to mariadb 3.x API change
...
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2022-01-27 11:31:07 -06:00
0d92ad8826
Merge branch 'dependabot/maven/jetty-10.0.x/org.mariadb.jdbc-mariadb-java-client-3.0.3' of github.com:eclipse/jetty.project into dependabot/maven/jetty-10.0.x/org.mariadb.jdbc-mariadb-java-client-3.0.3
2022-01-27 11:24:17 -06:00
af74b79473
Bump mariadb-java-client from 2.7.5 to 3.0.3
...
Bumps [mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j ) from 2.7.5 to 3.0.3.
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases )
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mariadb-corporation/mariadb-connector-j/compare/2.7.5...3.0.3 )
---
updated-dependencies:
- dependency-name: org.mariadb.jdbc:mariadb-java-client
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-27 11:24:13 -06:00
9181457013
Updated copyright years.
...
Signed-off-by: Simone Bordet <simone.bordet@gmail.com>
2022-01-27 18:20:41 +01:00
2016ca9dfd
Bump jackson-core from 2.13.0 to 2.13.1
...
Bumps [jackson-core](https://github.com/FasterXML/jackson-core ) from 2.13.0 to 2.13.1.
- [Release notes](https://github.com/FasterXML/jackson-core/releases )
- [Commits](https://github.com/FasterXML/jackson-core/compare/jackson-core-2.13.0...jackson-core-2.13.1 )
---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-core
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-27 17:08:18 +00:00
67dd3b80b2
Bump mariadb-java-client from 2.7.5 to 3.0.3
...
Bumps [mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j ) from 2.7.5 to 3.0.3.
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases )
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/master/CHANGELOG.md )
- [Commits](https://github.com/mariadb-corporation/mariadb-connector-j/compare/2.7.5...3.0.3 )
---
updated-dependencies:
- dependency-name: org.mariadb.jdbc:mariadb-java-client
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-27 17:08:03 +00:00
68a5550ca6
Bump avro from 1.9.2 to 1.11.0
...
Bumps avro from 1.9.2 to 1.11.0.
---
updated-dependencies:
- dependency-name: org.apache.avro:avro
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-27 17:07:53 +00:00
c6e011e9ba
Merge pull request #7454 from eclipse/jetty-10.0.x-dependabot-infinispan-11
...
Limit dependabot version ranges for infinispan, jakarta.cdi, and jakarta.transactions
2022-01-27 18:06:35 +01:00
72eb04a8fa
Fix quoting on infinispan rule
...
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2022-01-27 10:59:54 -06:00
9d31dd6089
Adding version range limits for cdi & interceptor APIs
...
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2022-01-27 10:56:41 -06:00
fba2ef09e9
Issue #6282 - Allow SecuredRedirectHandler status code to be configurable ( #7441 )
...
Signed-off-by: Dell Green <dell.green@ideaworks.co.uk>
2022-01-27 10:50:38 -06:00
b2cca26b27
Bump jackson-annotations from 2.13.0 to 2.13.1
...
Bumps [jackson-annotations](https://github.com/FasterXML/jackson ) from 2.13.0 to 2.13.1.
- [Release notes](https://github.com/FasterXML/jackson/releases )
- [Commits](https://github.com/FasterXML/jackson/commits )
---
updated-dependencies:
- dependency-name: com.fasterxml.jackson.core:jackson-annotations
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-27 16:45:21 +00:00
b49cc9b4f3
Merge pull request #7447 from eclipse/dependabot/maven/jetty-10.0.x/com.google.inject-guice-5.1.0
...
Bump guice from 5.0.1 to 5.1.0
2022-01-27 17:44:50 +01:00
6d3a09f821
Merge pull request #7438 from eclipse/dependabot/maven/jetty-10.0.x/org.codehaus.mojo-versions-maven-plugin-2.9.0
...
Bump versions-maven-plugin from 2.8.1 to 2.9.0
2022-01-27 17:44:12 +01:00
cb127793e5
Happy New Year 2022 ( #7459 )
...
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2022-01-27 10:42:30 -06:00
576d543410
Use commons.io.version property
...
Signed-off-by: Jan Bartel <janb@webtide.com>
2022-01-27 20:45:23 +11:00
bc0eebf26b
Jetty 10.0.x 7435 transitive deps security warnings ( #7455 )
...
* Issue #7435 Update some transitive deps to avoid security warnings
Signed-off-by: Jan Bartel <janb@webtide.com>
2022-01-27 20:17:01 +11:00
1ee37a850f
dependabot should manage infinispan only < 12
...
Signed-off-by: Olivier Lamy <oliver.lamy@gmail.com>
2022-01-27 14:12:46 +10:00
f8fc7f38a8
Bump guice from 5.0.1 to 5.1.0
...
Bumps [guice](https://github.com/google/guice ) from 5.0.1 to 5.1.0.
- [Release notes](https://github.com/google/guice/releases )
- [Commits](https://github.com/google/guice/compare/5.0.1...5.1.0 )
---
updated-dependencies:
- dependency-name: com.google.inject:guice
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-25 09:22:11 +00:00
551f866dbb
Bump versions-maven-plugin from 2.8.1 to 2.9.0
...
Bumps [versions-maven-plugin](https://github.com/mojohaus/versions-maven-plugin ) from 2.8.1 to 2.9.0.
- [Release notes](https://github.com/mojohaus/versions-maven-plugin/releases )
- [Changelog](https://github.com/mojohaus/versions-maven-plugin/blob/master/ReleaseNotes.md )
- [Commits](https://github.com/mojohaus/versions-maven-plugin/compare/versions-maven-plugin-2.8.1...versions-maven-plugin-2.9.0 )
---
updated-dependencies:
- dependency-name: org.codehaus.mojo:versions-maven-plugin
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-24 09:28:17 +00:00
e135a5c405
Merge pull request #7416 from eclipse/dependabot/maven/jetty-10.0.x/org.apache.maven.plugins-maven-plugin-plugin-3.6.4
2022-01-23 21:16:56 +00:00
98277f3f7d
Merge pull request #7433 from eclipse/dependabot/maven/jetty-10.0.x/org.eclipse.tycho-tycho-p2-repository-plugin-2.6.0
2022-01-21 23:45:05 +00:00
a6026714e2
Bump tycho-p2-repository-plugin from 2.5.0 to 2.6.0
...
Bumps tycho-p2-repository-plugin from 2.5.0 to 2.6.0.
---
updated-dependencies:
- dependency-name: org.eclipse.tycho:tycho-p2-repository-plugin
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-21 09:21:32 +00:00
20876309f2
Merge pull request #7428 from eclipse/dependabot/maven/jetty-10.0.x/org.mariadb.jdbc-mariadb-java-client-2.7.5
2022-01-21 01:38:50 +00:00
c5e4b43c01
Merge pull request #7426 from eclipse/dependabot/maven/jetty-10.0.x/org.testcontainers-testcontainers-bom-1.16.3
2022-01-21 01:38:15 +00:00
62f24dfd86
Merge pull request #7423 from eclipse/jetty-security-process
...
Security process file
2022-01-20 19:53:44 +01:00
e4140e2ee4
#7318 disable assertion for H3 as it's not a valid assertion for UDP
...
Signed-off-by: Ludovic Orban <lorban@bitronix.be>
2022-01-20 15:22:11 +01:00
aef7480765
#7318 fix the assertion parameters' order
...
Signed-off-by: Ludovic Orban <lorban@bitronix.be>
2022-01-20 15:22:11 +01:00
9736579bd5
Bump mariadb-java-client from 2.7.4 to 2.7.5
...
Bumps [mariadb-java-client](https://github.com/mariadb-corporation/mariadb-connector-j ) from 2.7.4 to 2.7.5.
- [Release notes](https://github.com/mariadb-corporation/mariadb-connector-j/releases )
- [Changelog](https://github.com/mariadb-corporation/mariadb-connector-j/blob/2.7.5/CHANGELOG.md )
- [Commits](https://github.com/mariadb-corporation/mariadb-connector-j/compare/2.7.4...2.7.5 )
---
updated-dependencies:
- dependency-name: org.mariadb.jdbc:mariadb-java-client
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-20 09:21:18 +00:00
64de9f5a07
Bump testcontainers-bom from 1.16.2 to 1.16.3
...
Bumps [testcontainers-bom](https://github.com/testcontainers/testcontainers-java ) from 1.16.2 to 1.16.3.
- [Release notes](https://github.com/testcontainers/testcontainers-java/releases )
- [Changelog](https://github.com/testcontainers/testcontainers-java/blob/master/CHANGELOG.md )
- [Commits](https://github.com/testcontainers/testcontainers-java/compare/1.16.2...1.16.3 )
---
updated-dependencies:
- dependency-name: org.testcontainers:testcontainers-bom
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-20 09:18:37 +00:00
a169b8ae46
Merge pull request #7401 from eclipse/dependabot/maven/jetty-10.0.x/io.grpc-grpc-core-1.43.2
2022-01-20 05:54:57 +00:00
6e6357311b
Security process file
2022-01-20 08:24:20 +11:00
4a7ae1fca9
Merge pull request #7419 from Artur-/patch-1
...
Update resource base example so it works
2022-01-19 19:21:41 +01:00
fd2407c72f
Clarify that requestHeaderSize is a cumulative limit ( #7417 )
...
* Clarify that requestHeaderSize is a cumulative limit
HttpConfiguration documents the requestHeaderSize configuration option
as being a limit on the size of a single request header, but it is in
fact a limit on the cumulative size of all request headers as well as
the request URI. This patch updates the documentation accordingly, and
adds test cases for the HTTP/1.x and HTTP/2 parsers to verify the
behavior.
NB.: the HTTP/3 parser and configuration seem to correctly document this
option as being a global limit on header size.
* Improve requestHeaderSize tests and documentation per review
Signed-off-by: Máté Szabó <mszabo@wikia-inc.com>
2022-01-19 11:56:27 -06:00
56d88ddb5e
Make example actually work
2022-01-19 14:22:24 +02:00
b262006bf0
Update parameter name to match new version
...
The code change was done in eclipse/jetty.project#5142
2022-01-19 13:09:36 +02:00
2391e66b9f
Bump maven-plugin-plugin from 3.6.2 to 3.6.4
...
Bumps [maven-plugin-plugin](https://github.com/apache/maven-plugin-tools ) from 3.6.2 to 3.6.4.
- [Release notes](https://github.com/apache/maven-plugin-tools/releases )
- [Commits](https://github.com/apache/maven-plugin-tools/compare/maven-plugin-tools-3.6.2...maven-plugin-tools-3.6.4 )
---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-plugin-plugin
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-19 02:22:55 +00:00
8cc9802dbd
Merge pull request #7410 from eclipse/dependabot/maven/jetty-10.0.x/maven.plugin-tools.version-3.6.4
...
Bump maven.plugin-tools.version from 3.6.2 to 3.6.4
2022-01-19 13:21:47 +11:00
2b41e4d231
Issue #7351 - large WebSocket payloads with permessage-deflate hang ( #7360 )
...
PerMessageDeflateExtension and FragmentExtensions now intercept demand for incoming frames. These extensions may fragment a single frame into many frames, so they must wait until a new frame has been demanded before forwarding the next synthetic frame to the application.
2022-01-19 10:47:45 +11:00
113cafafef
Bump jboss-logging from 3.4.2.Final to 3.4.3.Final ( #7381 )
...
* Bump jboss-logging from 3.4.2.Final to 3.4.3.Final
Bumps [jboss-logging](https://github.com/jboss-logging/jboss-logging ) from 3.4.2.Final to 3.4.3.Final.
- [Release notes](https://github.com/jboss-logging/jboss-logging/releases )
- [Commits](https://github.com/jboss-logging/jboss-logging/compare/3.4.2.Final...3.4.3.Final )
---
updated-dependencies:
- dependency-name: org.jboss.logging:jboss-logging
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
* Bump jboss-logmanager.version to 2.1.18.Final
Signed-off-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Joakim Erdfelt <joakim.erdfelt@gmail.com>
2022-01-18 11:10:05 -06:00
01a97d4425
Bump maven.plugin-tools.version from 3.6.2 to 3.6.4
...
Bumps `maven.plugin-tools.version` from 3.6.2 to 3.6.4.
Updates `maven-plugin-annotations` from 3.6.2 to 3.6.4
- [Release notes](https://github.com/apache/maven-plugin-tools/releases )
- [Commits](https://github.com/apache/maven-plugin-tools/compare/maven-plugin-tools-3.6.2...maven-plugin-tools-3.6.4 )
Updates `maven-plugin-tools-api` from 3.6.2 to 3.6.4
- [Release notes](https://github.com/apache/maven-plugin-tools/releases )
- [Commits](https://github.com/apache/maven-plugin-tools/compare/maven-plugin-tools-3.6.2...maven-plugin-tools-3.6.4 )
---
updated-dependencies:
- dependency-name: org.apache.maven.plugin-tools:maven-plugin-annotations
dependency-type: direct:production
update-type: version-update:semver-patch
- dependency-name: org.apache.maven.plugin-tools:maven-plugin-tools-api
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-18 09:20:12 +00:00
25306366d4
#7201 improve efforts to call listeners only when needed and guard against potential concurrent closures
...
Signed-off-by: Ludovic Orban <lorban@bitronix.be>
2022-01-18 09:54:18 +01:00
fdeb03d556
#7201 try to call released() and removed() listeners when the connection pool gets closed
...
Signed-off-by: Ludovic Orban <lorban@bitronix.be>
2022-01-18 09:54:18 +01:00
902b85b479
Merge pull request #7402 from eclipse/dependabot/maven/jetty-10.0.x/com.github.jnr-jnr-unixsocket-0.38.17
2022-01-14 21:39:07 +00:00
c58e9e0fb1
Bump jnr-unixsocket from 0.38.15 to 0.38.17
...
Bumps [jnr-unixsocket](https://github.com/jnr/jnr-unixsocket ) from 0.38.15 to 0.38.17.
- [Release notes](https://github.com/jnr/jnr-unixsocket/releases )
- [Commits](https://github.com/jnr/jnr-unixsocket/compare/jnr-unixsocket-0.38.15...jnr-unixsocket-0.38.17 )
---
updated-dependencies:
- dependency-name: com.github.jnr:jnr-unixsocket
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-14 17:22:49 +00:00
4e1a9a1500
Bump grpc-core from 1.43.1 to 1.43.2
...
Bumps [grpc-core](https://github.com/grpc/grpc-java ) from 1.43.1 to 1.43.2.
- [Release notes](https://github.com/grpc/grpc-java/releases )
- [Commits](https://github.com/grpc/grpc-java/compare/v1.43.1...v1.43.2 )
---
updated-dependencies:
- dependency-name: io.grpc:grpc-core
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-01-14 17:21:29 +00:00
9cbbeddbdd
Bump hawtio-default from 2.14.3 to 2.14.4 ( #7397 )
...
Bumps [hawtio-default](https://github.com/hawtio/hawtio ) from 2.14.3 to 2.14.4.
- [Release notes](https://github.com/hawtio/hawtio/releases )
- [Changelog](https://github.com/hawtio/hawtio/blob/master/CHANGES.md )
- [Commits](https://github.com/hawtio/hawtio/compare/hawtio-2.14.3...hawtio-2.14.4 )
---
updated-dependencies:
- dependency-name: io.hawt:hawtio-default
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-01-14 11:18:52 -06:00
Joakim Erdfelt
dependabot[bot]
Simone Bordet
Dell Green
Jan Bartel
Olivier Lamy
Ludovic Orban
Greg Wilkins
mszabo-wikia
Artur
Lachlan