Bump Java to 21

[derek-ho]

Description

Bump Java to 21. Adds unsecure flag to prevent build failures.

Issues Resolved

Fix: #1830

Check List

• New functionality includes testing.
  • All tests pass, including unit test, integration test and doctest
• New functionality has been documented.
  • New functionality has javadoc added
  • New functionality has user manual doc added
• Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

[joshuali925]

what is this? it shouldn't use node

[derek-ho]

It is a change on github runners:

On June 30th 2024, we will change the default from Node16 to Node20.
To opt out of this and continue using Node16 while it is still available in the runner, you can choose to set ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true

[joshuali925]

but do we need it in this workflow? this workflow doesn't use node

[derek-ho]

This is coming from the container image this workflow step is being run on:

container:
      # using the same image which is used by opensearch-build team to build the OpenSearch Distribution
      # this image tag is subject to change as more dependencies and updates will arrive over time
      image: ${{ needs.Get-CI-Image-Tag.outputs.ci-image-version-linux }}. 

That is using AL2, which is causing the incompatibility.

[joshuali925]

i understand the incompatibility, the question was where is it using node. i'm assuming it's the checkout action or github action internal impl

[derek-ho]

Yes i think the checkout action uses node, did a quick search: https://github.com/search?q=repo%3Aactions%2Fcheckout%20node&type=code