HBASE-29651 Bump jruby to 9.4.14.0 to fix multiple CVEs

[xavifeds8]

This change fixes the following list of CVEs:

• CVE-2025-43857: Fixed in JRuby 9.4.13.0
• CVE-2025-27219: Fixed in JRuby 9.4.14.0
• CVE-2025-27220: Fixed in JRuby 9.4.14.0

[Apache-HBase]

🎊 +1 overall

Vote	Subsystem	Runtime	Logfile	Comment
+0 🆗	reexec	0m 13s		Docker mode activated.
			_ Prechecks _
+1 💚	dupname	0m 0s		No case conflicting files found.
+0 🆗	codespell	0m 0s		codespell was not available.
+0 🆗	detsecrets	0m 0s		detect-secrets was not available.
+1 💚	@author	0m 0s		The patch does not contain any @author tags.
			_ master Compile Tests _
+1 💚	mvninstall	4m 59s		master passed
+1 💚	compile	13m 10s		master passed
+1 💚	spotless	1m 2s		branch has no errors when running spotless:check.
			_ Patch Compile Tests _
+1 💚	mvninstall	4m 21s		the patch passed
+1 💚	compile	12m 49s		the patch passed
+1 💚	javac	12m 49s		the patch passed
+1 💚	blanks	0m 0s		The patch has no blanks issues.
+1 💚	xmllint	0m 2s		No new issues.
+1 💚	hadoopcheck	13m 38s		Patch does not cause any errors with Hadoop 3.3.6 3.4.1.
+1 💚	spotless	0m 54s		patch has no errors when running spotless:check.
			_ Other Tests _
+1 💚	asflicense	0m 16s		The patch does not generate ASF License warnings.
		59m 12s

Subsystem	Report/Notes
Docker	ClientAPI=1.48 ServerAPI=1.48 base: https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-7405/2/artifact/yetus-general-check/output/Dockerfile
GITHUB PR	#7405
Optional Tests	dupname asflicense javac codespell detsecrets xmllint hadoopcheck spotless compile
uname	Linux a8eba35f21a4 6.8.0-1024-aws #26~22.04.1-Ubuntu SMP Wed Feb 19 06:54:57 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/hbase-personality.sh
git revision	master / 9c1244f
Default Java	Eclipse Adoptium-17.0.11+9
Max. process+thread count	165 (vs. ulimit of 30000)
modules	C: . U: .
Console output	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-7405/2/console
versions	git=2.34.1 maven=3.9.8 xmllint=20913
Powered by	Apache Yetus 0.15.0 https://yetus.apache.org

This message was automatically generated.

[Apache-HBase]

💔 -1 overall

Vote	Subsystem	Runtime	Logfile	Comment
+0 🆗	reexec	0m 12s		Docker mode activated.
-0 ⚠️	yetus	0m 4s		Unprocessed flag(s): --brief-report-file --spotbugs-strict-precheck --author-ignore-list --blanks-eol-ignore-file --blanks-tabs-ignore-file --quick-hadoopcheck
			_ Prechecks _
			_ master Compile Tests _
+1 💚	mvninstall	4m 17s		master passed
+1 💚	compile	3m 14s		master passed
+1 💚	javadoc	3m 24s		master passed
+1 💚	shadedjars	7m 15s		branch has no errors when building our shaded downstream artifacts.
			_ Patch Compile Tests _
+1 💚	mvninstall	4m 48s		the patch passed
+1 💚	compile	3m 24s		the patch passed
+1 💚	javac	3m 24s		the patch passed
+1 💚	javadoc	3m 14s		the patch passed
+1 💚	shadedjars	7m 17s		patch has no errors when building our shaded downstream artifacts.
			_ Other Tests _
-1 ❌	unit	491m 40s	/patch-unit-root.txt	root in the patch failed.
		533m 43s

Subsystem	Report/Notes
Docker	ClientAPI=1.48 ServerAPI=1.48 base: https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-7405/2/artifact/yetus-jdk17-hadoop3-check/output/Dockerfile
GITHUB PR	#7405
Optional Tests	javac javadoc unit shadedjars compile
uname	Linux 1b87d4af1062 6.8.0-1024-aws #26~22.04.1-Ubuntu SMP Wed Feb 19 06:54:57 UTC 2025 x86_64 x86_64 x86_64 GNU/Linux
Build tool	maven
Personality	dev-support/hbase-personality.sh
git revision	master / 9c1244f
Default Java	Eclipse Adoptium-17.0.11+9
Test Results	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-7405/2/testReport/
Max. process+thread count	3316 (vs. ulimit of 30000)
modules	C: . U: .
Console output	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-7405/2/console
versions	git=2.34.1 maven=3.9.8
Powered by	Apache Yetus 0.15.0 https://yetus.apache.org

This message was automatically generated.

[xavifeds8]

Built code locally with this change, untar'ed, started hbase, and ran basic shell commands and verified no errors!

Test cases :-
xavi_hbase_test.txt

Execution report :-
hbase_test_report.txt

[NihalJain]

UT Failures are not related. Validation looks fine.

[NihalJain]

Hi @xavifeds8 I assume this is your first PR in Apache HBase. Welcome to the project with your first contribution. I would suggest you to (also) add your personal email for the commits currently it references your organisation email id. Please update and push a commit to fix this.

Also, please ensure to keep PR title in sync with the JIRA title. We usually follow a simple format <jira-id> <jira-title> i.e. HBASE-12345 Fix All The Things

Ref https://hbase.apache.org/book.html#_commit_message_format

[xavifeds8]

Hi @NihalJain ,

Thanks for the warm welcome! I have applied both fixes:
Updated to my personal email and updated the PR as per the jira format
Looking forward to contributing more to the project!

Thanks!

[NihalJain]

Pushed to master. Please raise backports for all relevant branches. I think this would go until branch-2

[Apache-HBase]

💔 -1 overall

Vote	Subsystem	Runtime	Logfile	Comment
+0 🆗	reexec	0m 0s		Docker mode activated.
-1 ❌	patch	0m 8s		#7405 does not apply to master. Rebase required? Wrong Branch? See https://yetus.apache.org/documentation/in-progress/precommit-patchnames for help.

Subsystem	Report/Notes
GITHUB PR	#7405
Console output	https://ci-hbase.apache.org/job/HBase-PreCommit-GitHub-PR/job/PR-7405/4/console
versions	git=2.34.1
Powered by	Apache Yetus 0.15.0 https://yetus.apache.org

This message was automatically generated.