How can we reproduce the crash?

Clear cached resolve/reject JSValues before destroying the interpreter
to prevent GC from accessing freed memory during heap sweep.

The finalizer was not clearing the WriteBarrier fields (m_resolve and
m_reject) before destroying the object, causing JavaScriptCore's garbage
collector to access invalid memory during sweepPreciseAllocations.

will attach a PR to this issue

Relevant log output

Stack Trace (bun.report)

Bun v1.2.21 (7c45ed9) on windows x86_64_baseline [AutoCommand]

Segmentation fault at address 0x22F7E6E0120

• 1 unknown/js code
• ZigGeneratedClasses.zig:18000: ShellInterpreterClass__finalize
• Weak.h:90: JSC::Weak<WebCore::JSShellInterpreter>::impl
• PreciseAllocation.h:155: JSC::PreciseAllocation::isLowerTierPrecise
• MarkedSpace.cpp:256: JSC::MarkedSpace::sweepPreciseAllocations
• memory:3461: std::unique_ptr<JSC::IsoSubspace,std::default_delete<JSC::IsoSubspace> >::operator bool
• Heap.cpp:2203: JSC::Heap::handleNeedFinalize
• Heap.cpp:2211: JSC::Heap::handleNeedFinalize
• Heap.cpp:1787: JSC::Heap::changePhase
• Heap.cpp:1411: JSC::Heap::runCurrentPhase

Features: transpiler_cache, tsconfig, tsconfig_paths, Bun.stderr, Bun.stdin, Bun.stdout, dotenv, fetch, http_server, jsc, shell, spawn, standalone_executable, standalone_executable

_{Sentry Issue: BUN-SPG}