JPR is using some public cookie handling code written by a third party. That's entirely normal and doesn't suggest any kind of a link between the two entities.

Edit: I wonder if the description "cookie manipulation" is worrying you.

Manipulation doesn't necessarily indicate foul play. It has two definitions:

1. handle or control (a tool, mechanism, etc.), typically in a skillful manner.
2. control or influence (a person or situation) cleverly, unfairly, or unscrupulously.

The cookie.js description is talking about the first definition.