dependabot[bot] opened a new pull request, #212: URL: https://github.com/apache/commons-build-plugin/pull/212
Bumps [org.graalvm.js:js-scriptengine](https://github.com/graalvm/graaljs) from 23.1.1 to 23.1.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/graalvm/graaljs/releases";>org.graalvm.js:js-scriptengine's releases</a>.</em></p> <blockquote> <h2>GraalJS - GraalVM Community 23.1.2</h2> <p>GraalJS is an ECMAScript-compliant runtime to execute JavaScript and Node.js applications. It is fully standard compliant, execute applications with high performance, and provide all benefits from the GraalVM stack, including language interoperability and common tooling.</p> <p>GraalJS version <strong>23.1.2</strong> is designed for use with <strong>Oracle GraalVM for JDK 21.0.2</strong> or <strong>GraalVM Community Edition for JDK 21.0.2</strong>, and can be downloaded downloaded separately.</p> <p>There are two distribution types to choose from:</p> <ul> <li>Native Standalone: This contains a Native Image compiled launcher</li> <li>JVM Standalone: This contains JavaScript in the JVM configuration</li> </ul> <p>To distinguish between them, the GraalVM Community Edition version has <code>-community</code> in the name. A JVM standalone has <code>-jvm</code> in a name.</p> <p>Learn more about GraalJS and how to get started on the website: <a href="http://www.graalvm.org/reference-manual/js/";>https://www.graalvm.org/javascript/</a>.</p> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/oracle/graaljs/blob/vm-23.1.2/CHANGELOG.md";>org.graalvm.js:js-scriptengine's changelog</a>.</em></p> <blockquote> <h2>Version 23.1.2</h2> <ul> <li>Updated Node.js to version 18.18.2.</li> </ul> <h2>Version 23.1.0</h2> <ul> <li>NOTE: GraalVM no longer ships with a "js" ScriptEngine. Please either use the Maven dependency or explicitly put <code>js-scriptengine.jar</code> on the module path. See <a href="https://github.com/oracle/graaljs/blob/vm-23.1.2/docs/user/ScriptEngine.md";>ScriptEngine documentation</a> for details.</li> <li>ECMAScript 2023 mode/features enabled by default.</li> <li>Updated Node.js to version 18.17.1.</li> <li>Implemented the <a href="https://github.com/tc39/proposal-async-context";>Async Context</a> proposal. It is available behind the experimental option <code>--js.async-context</code>.</li> <li><code>FinalizationRegistry.prototype.cleanupSome</code> is not enabled by default any more; it has been moved to ECMAScript staging mode (<code>--js.ecmascript-version=staging</code>).</li> <li>Added an experimental option <code>--js.allow-narrow-spaces-in-date-format</code> (enabled by default). When this option is set to <code>false</code> then narrow spaces in date/time formats are replaced by a space (<code>0x20</code>).</li> <li>Made option <code>js.console</code> stable and allowed in <code>SandboxPolicy.UNTRUSTED</code>.</li> <li>Made option <code>js.unhandled-rejections</code> stable and allowed in <code>SandboxPolicy.CONSTRAINED</code>.</li> <li>Added option <code>js.allow-eval</code> that is stable and allowed in <code>SandboxPolicy.UNTRUSTED</code>.</li> <li>Deprecated option <code>js.disable-eval</code>, superseded by <code>js.allow-eval</code>.</li> <li>Implemented the <a href="https://github.com/tc39/proposal-string-dedent";>String.dedent</a> proposal. It is available in ECMAScript staging mode (<code>--js.ecmascript-version=staging</code>).</li> <li>Duplicate named capture groups are now supported in regular expressions, as per the <a href="https://github.com/tc39/proposal-duplicate-named-capturing-groups";>duplicate named capturing groups</a> proposal.</li> <li>The Maven coordinates for embedding the GraalVM JavaScript have been updated. For consuming the enterprise GraalVM JavaScript, use: <pre lang="xml"><code><dependency> <groupId>org.graalvm.polyglot</groupId> <artifactId>js</artifactId> <version>${graalvm.version}</version> <type>pom</type> </dependency> </code></pre> For consuming the community GraalVM JavaScript, use: <pre lang="xml"><code><dependency> <groupId>org.graalvm.polyglot</groupId> <artifactId>js-community</artifactId> <version>${graalvm.version}</version> <type>pom</type> </dependency> </code></pre> </li> </ul> <h2>Version 23.0.0</h2> <ul> <li>Implemented the <a href="https://github.com/WebAssembly/reference-types";>WebAssembly reference types</a> proposal.</li> <li>Implemented the <a href="https://github.com/tc39/proposal-iterator-helpers";>Iterator Helpers</a> proposal. It is available behind the experimental option <code>--js.iterator-helpers</code>.</li> <li>Implemented the <a href="https://github.com/tc39/proposal-shadowrealm";>ShadowRealm</a> proposal. It is available behind the experimental option <code>--js.shadow-realm</code>.</li> <li>Removed experimental option <code>v8-legacy-const</code>.</li> <li>Removed non-standard <code>SharedArrayBuffer.isView</code>.</li> <li>Updated Node.js to version 18.14.1.</li> <li>Implemented the <a href="https://github.com/tc39/proposal-symbols-as-weakmap-keys";>Symbols as WeakMap keys</a> proposal. It is available in ECMAScript staging mode (<code>--js.ecmascript-version=staging</code>).</li> <li>Implemented the <a href="https://github.com/tc39/proposal-arraybuffer-transfer";>ArrayBuffer.prototype.transfer and friends</a> proposal. It is available in ECMAScript staging mode (<code>--js.ecmascript-version=staging</code>).</li> <li>Implemented the <a href="https://github.com/tc39/proposal-change-array-by-copy";>Change Array by copy</a> proposal. It is available in ECMAScript staging mode (<code>--js.ecmascript-version=staging</code>).</li> <li>Added BigInteger interop support. Note that foreign BigIntegers require an explicit type cast using the <code>BigInt</code> function to opt into JS BigInt semantics. The default semantics is to treat all foreign numbers like JS Number values, regardless of the original value or type. Arithmetic operators perform an implicit lossy conversion to double; mixing a JS BigInt with any non-JS number always throws.</li> </ul> <!-- raw HTML omitted --> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/oracle/graaljs/commit/1316ed0991fe04083602b0c0023c3b9ae5fa25e3";><code>1316ed0</code></a> GR-50494: release GraalVM 23.1.2</li> <li><a href="https://github.com/oracle/graaljs/commit/87c28813e26045318585f74bc833b318e74541ff";><code>87c2881</code></a> [GR-49875] Backport: Upgrading the underlying Node.js to version 18.18.2.</li> <li><a href="https://github.com/oracle/graaljs/commit/8e62dccd33a0061fbe0579e20c275a209b73d5a2";><code>8e62dcc</code></a> Adding a note about Node.js update (to version 18.18.2) into changelog.</li> <li><a href="https://github.com/oracle/graaljs/commit/465cfe865c6c80f1e51ea4e8c6e5bf84797851bb";><code>465cfe8</code></a> Updating Node.js license in 3rd_party_licenses.txt,</li> <li><a href="https://github.com/oracle/graaljs/commit/e7bd55467442133ca2d1413dfe8e43b989c6cb8d";><code>e7bd554</code></a> Updating the status of es-module test-suite.</li> <li><a href="https://github.com/oracle/graaljs/commit/eb47974b1ea3f3d5602852e2a06afb034f564f35";><code>eb47974</code></a> Updating the status of parallel test-suite.</li> <li><a href="https://github.com/oracle/graaljs/commit/fa499e03cc46ed8338f7ace7d3ef21de80311e3e";><code>fa499e0</code></a> Allowing graal-js error message in test-esm-import-flag.</li> <li><a href="https://github.com/oracle/graaljs/commit/bab67fc3884c4789e164bd8db84d71f82d0bbb19";><code>bab67fc</code></a> Implementation of v8::Isolate::InContext().</li> <li><a href="https://github.com/oracle/graaljs/commit/9398c143def75bd742880758751f4a93e0796511";><code>9398c14</code></a> Merge commit '8a01b3dcb7d08a48bfd3e6bf85ef49faa1454839' into js/GR-49875</li> <li><a href="https://github.com/oracle/graaljs/commit/0fff8a8b1eeae56897527b03a6d743f86dfb3a41";><code>0fff8a8</code></a> [GR-47943] Backport: Update getting started with Node.js and JavaScript using...</li> <li>Additional commits viewable in <a href="https://github.com/graalvm/graaljs/compare/vm-23.1.1...vm-23.1.2";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
