chore: Upgrade to JasperStarter 3.6.2

bin/jasperstarter/.gitattributes

@@ -0,0 +1,5 @@
+CHANGES text eol=crlf
+LICENSE text eol=crlf
+NOTICE text eol=crlf
+README.md text eol=crlf
+jdbc/README text eol=crlf

bin/jasperstarter/CHANGES

@@ -2,6 +2,41 @@
 JasperStarter - Running JasperReports from command line
 ========================================================
 
+Release notes - JasperStarter - Version 3.6.2
+---------------------------------------------
+
+** Bug
+    * JAS-161 CVE-2021-44832 in log4j-2.17.0
+
+
+Release notes - JasperStarter - Version 3.6.1
+---------------------------------------------
+
+** Bug
+    * JAS-160 log4j 2.16.0 is vulnerable to CVE-2021-45105
+
+
+Release notes - JasperStarter - Version 3.6.0
+---------------------------------------------
+
+** Bug
+    * CVE-2019-17571 - Included in Log4j 1.2 is a SocketServer class that is
+      vulnerable to deserialization of untrusted data which can be exploited to
+      remotely execute arbitrary code when combined with a deserialization
+      gadget when listening to untrusted network traffic for log data. This
+      affects Log4j versions up to 1.2 up to 1.2.17.
+
+    * [JAS-158] Jasperstarter contains an old log4j-1.2.17 which is affected by CVE-2019-17571
+    * [JAS-146] mvn: Could not resolve dependencies \(...\) from/to jaspersoft.artifactoryonline.com
+    * [JAS-142] Failed to generate qrcode - zxing library missing
+
+** Improvement
+    * [JAS-156] Is JasperStarter vulnerable to CVE-2021-44228
+
+** Task
+    * [JAS-157] Include JasperReports 6.18.1
+
+
 Release notes - JasperStarter - Version 3.5.0
 ---------------------------------------------
 
@@ -359,7 +394,7 @@ JasperStarter is now able to prompt for report parameters.
           jrxml    - compiles implicit
           jrprint  - print, view or export previously filled reports.
         New output type: jrprint. This makes --keep obsolete.
-        New parameter -w writes compiled file to imput dir if jrxml is
+        New parameter -w writes compiled file to input dir if jrxml is
         processed.
         Parameter -t defaults to "none" and can therefore be omited if no
         database is needed.

bin/jasperstarter/README.md

@@ -7,6 +7,12 @@ JasperStarter is an opensource command line launcher and batch compiler for
 
 The official homepage is [jasperstater.cenote.de][].
 
+**JasperStarter is not vulnerable to [CVE-2021-44228](https://nvd.nist.gov/vuln/detail/CVE-2021-44228).**
+
+**But all releases including 3.5.0 contain log4j-1.2.17 which is affected by
+[CVE-2019-17571](https://nvd.nist.gov/vuln/detail/CVE-2019-17571).** I cannot say if it is possible to
+exploit this with JasperStarter but in any case you should update to a newer version of JasperStarter.
+
 It has the following features:
 
   * Run any JasperReport that needs a jdbc, csv, xml, json, jsonql or empty datasource
@@ -33,7 +39,7 @@ It has the following features:
 
 Requirements:
 
-  * Java 1.8 or higher
+  * Java 1.8
   * A JDBC 2.1 driver for your database
 
 
@@ -228,4 +234,4 @@ limitations under the License.
 [Usage]:http://jasperstarter.sourceforge.net/usage.html
 [Issues]:https://cenote-issues.atlassian.net/browse/JAS
 [Changes]:changes.html
-[jpy]:https://github.com/bcdev/jpy
+[jpy]:https://github.com/bcdev/jpy

bin/jasperstarter/bin/jasperstarter

@@ -18,7 +18,7 @@
 if(test -L "$0") then
   auxlink=`ls -l "$0" | sed 's/^[^>]*-> //g'`
   HOME_FOLDER=`dirname "$auxlink"`/..
-else
+else 
   HOME_FOLDER=`dirname "$0"`/..
 fi