Clik here to view.
Eat What You Kill without Starvation!
Jetty 9 introduced the Eat-What-You-Kill[n]The EatWhatYouKill strategy is named after a hunting proverb in the sense that one should only kill to eat. The use of this phrase is not an endorsement of...
View ArticleIndexing/Listing Vulnerability in Jetty
If you are using DefaultServlet or ResourceHandler with indexing/listing, then you are vulnerable to a variant of XSS behaviors surrounding the use of injected HTML element attributes on the parent...
View ArticleRenaming Jetty from javax.* to jakarta.*
The Issue The Eclipse Jakarta EE project has not obtained the rights from Oracle to extend the Java EE APIs living in the javax.* package. As such, the Java community is faced with a choice between...
View ArticleJetty 10 and 11 Have Arrived!
The Eclipse Jetty team is proud to announce the release of Jetty 10 and Jetty 11! Let’s first get into the details of Jetty 10, which includes a huge amount of enhancements and upgrades. A summary of...
View ArticleCommunity Projects & Contributors Take on Jakarta EE 9
With the recent release of JakartaEE9, the future for Java has never been brighter. In addition to headline projects moving forward into the new jakarta.* namespace, there has been a tremendous amount...
View ArticleJetty & Log4j2 exploit CVE-2021-44228
The Apache Log4j2 library has suffered a series of critical security issues (see this page at the Log4j2 project). Eclipse Jetty by default does not use and does not depend on Log4j2 and therefore...
View ArticleClik here to view.
Jetty Project and TCK
/*! elementor - v3.21.0 - 25-04-2024 */ .elementor-widget-text-editor.elementor-drop-cap-view-stacked...
View ArticleNew Jetty 12 Maven Coordinates
Now that Jetty 12.0.1 is released to Maven Central, we’ve started to get a few questions about where some artifacts are, or when we intend to release them (as folks cannot find them). Things have...
View ArticleSecurity Audit with Trail of Bits
Several months ago, the Eclipse Foundation approached the Eclipse Jetty project with the offer of a security audit. The effort was being supported through a collaboration with the Open Source...
View ArticleClik here to view.
If Virtual Threads are the solution, what is the problem?
Java’s Virtual Threads (aka Project Loom or JEP 444) have arrived as a full platform feature in Java 21, which has generated considerable interest and many projects (including Eclipse Jetty) are...
View Article