Bump org.eclipse.jetty:jetty-bom from 11.0.18 to 12.0.4

[dependabot]

Bumps org.eclipse.jetty:jetty-bom from 11.0.18 to 12.0.4.

Release notes

Sourced from org.eclipse.jetty:jetty-bom's releases.

12.0.4

Special Thanks to the following Eclipse Jetty community members

• @​hantsy (Hantsy Bai)
• @​chadlwilson (Chad Wilson)

Changelog

• #10926 - AttributeNormalizer does not support combined resources
• #10925 - Jetty 12 documentation: references to jetty-maven-plugin
• #10922 - Fix NPE on null host when checking virtual host
• #10919 - EE10 multipart parsing may include '\r' at the front under certain conditions
• #10911 - Accurate implementation of H3 Request.beginNanoTime()
• #10902 - do not add duplicate jars to MetaData containerResources
• #10889 - Improve Resource use in MetaInfConfiguration
• #10888 - Fix leaked resources in jetty maven plugin
• #10886 - Don't track mounts for newResource() that do not exist
• #10879 - Improve redirect handling with reproducible content
• #10877 - Configure sbom plugin to produce sbom for jetty-home and include it in the distribution
• #10868 - reinstate HttpChannel reuse in H2
• #10867 - Immutable local/remote SocketAddress within a ConnectionMetaData
• #10866 - Recycle ServletChannel at ServletContextHandler completion.
• #10829 - Expired Session timing issue leads to Warning: "Invalidating session {} found to be expired when requested"
• #10812 - jetty-deploy has unnecessary dependency on awaitility/hamcrest pulled in at runtime (@​chadlwilson)
• #10810 - Update jetty-maven-plugin Documentation for new environment layer (@​hantsy)
• #10802 - Stabilize secondary_super_cache in server code
• #10801 - Recycle ServletChannel in ServletContextHandler
• #10797 - Multiple identical Set-Cookie response lines produced
• #10792 - Various cleanups of Handler.insertHandler
• #10787 - Weak reference concurrent pool
• #10775 - Review ConnectionMetaData.isSecure()
• #10768 - WebSocketUpgradeHandler should not require ContextHandler
• #10749 - WebSocketClient should expose upgrade request/response
• #10687 - Jetty WebSocket remembers mappings on restart
• #10484 - Clarify documentation about how to make a non-blocking handler tree
• #10384 - ServletChannel now using proper state changes for calls to ErrorHandler to avoid IllegalStateExceptions

12.0.3

Changelog

• #10794 - 301 Moved Permanently produces query with ; instead of ?
• #10779 - Upgrade to xhtml-schemas 1.3 which add one more entity systemid
• #10771 - EE10 ServletRequest.isSecure() not set by ForwardedRequestCustomizer
• #10762 - Better handling of Objects in JMX MetaData
• #10760 - Fix Overlay of Combined Resources
• #10759 - Fix HTTP/3 Client handling of MAX_FIELD_SECTION_SIZE setting
• #10747 - Add ability to compress and skip unserializable session attributes
• #10734 - jakarta.websocket.Session.getRequestParameterMap() contains the value as key
• #10731 - org.eclipse.jetty.server.Request uses wrong context attribute name javax.servlet instead of jakarta.servlet
• #10727 - Fix EE10 removeAttributes

... (truncated)

Commits

• 9b415c6 Updating to version 12.0.4
• 876796d Issue #10926 - add support for CombinedResource in AttributeNormalizer (#10927)
• 02c0782 Issue #10942 Fix flakey IdleSessionTest
• 0ca80b9 Fixes #10484 - Clarify documentation about how to make a non-blocking… (#10934)
• 01b46aa Merge pull request #10947 from jetty/fix/jetty-12/10943/flaky-ReservedThreadE...
• 80b1602 Merge pull request #10939 from jetty/jetty-12.0.x-10925-update-jetty-maven-pl...
• 9d00a7c Issue #9502 Configure sbom plugin to produce sbom for jetty-home and include ...
• 3f2c30a fix nightly snapshot deploy by skipping deploy and javadoc for build-resource...
• 0fd294b save jetty-home artifacts in case of label save-home (#10931)
• 5d355ef Fixes #10943 - Flaky test ReservedThreadExecutorTest.testBusyEvict.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.