CVE-2025-66453 Rhino has high CPU usage and potential DoS #374

	name: Build Maven

	on:
	push:
	pull_request:
	branches: [ 'sustaining/2.4.x','master' ]
	jobs:
	build-maven:
	runs-on: ${{ matrix.os }}
	strategy:
	matrix:
	os: [ 'ubuntu-latest', 'macos-latest', 'windows-latest' ]
	java: [ '11', '17', '21', '25' ]
	fail-fast: false
	steps:
	- uses: actions/checkout@v4
	- name: ${{ matrix.Java }}-${{ matrix.os }}
	uses: actions/setup-java@v4
	with:
	java-version: ${{ matrix.java }}
	distribution: 'zulu'
	- name: Cache Maven packages
	uses: actions/cache@v4
	with:
	path: ~/.m2/repository
	key: ${{ runner.os }}-m2-repository-${{ hashFiles('**/pom.xml') }}
	restore-keys: ${{ runner.os }}-m2-repository
	- name: Build with Maven
	env:
	MAVEN_OPTS: -Dhttps.protocols=TLSv1.2 -Dmaven.wagon.httpconnectionManager.ttlSeconds=120 -Dmaven.wagon.http.retryHandler.requestSentEnabled=true -Dmaven.wagon.http.retryHandler.count=10
	run: mvn --batch-mode --errors --update-snapshots package --file pom.xml

Provide feedback