search

elixir-tesla / tesla

The flexible HTTP client library for Elixir, with support for middleware and multiple adapters.
MIT License
2.01k stars 348 forks source link

chore(deps): bump poison from 5.0.0 to 6.0.0 #690

Closed dependabot[bot] closed 4 months ago

dependabot[bot] commented 4 months ago

Bumps poison from 5.0.0 to 6.0.0.

Changelog

Sourced from poison's changelog.

v6.0.0

Features

  • Support Erlang 27 and Elixir 1.17 #214 #222
  • Reintroduce Poison.encode_to_iodata!/1 for Phoenix compatibility #172 #206
  • Make :html_safe encode option follow OWASP recommended HTML escaping #194
  • Add Date.Range encoding
  • Allow :as decode option to be a function #207
  • Add a CHANGELOG #105

Bug Fixes

  • Stop double decoding structs #191
  • Fix various typespecs #199
  • Correctly encode some UTF-8 surrogate pairs #217

Performance Improvements

Breaking Changes

  • Remove deprecated HashSet encoding
  • Minimum supported versions are now Erlang 24 and Elixir 1.12
Commits
  • ffb05ba Release 6.0.0
  • 39021cd Merge pull request #221 from devinus/develop
  • de73e04 Poison 6
  • da3393f Merge pull request #208 from ryvasquez/master
  • ef8b22d Merge pull request #219 from irisTa56/fix_zero_width_joiner_between_surrogate...
  • 6fc4b7a Merge pull request #207 from rauann/rauann/as-function
  • af4ae70 Merge pull request #197 from RudolfMan/rm-poison
  • af0f395 Merge pull request #213 from nacengineer/patch-1
  • a018fc7 Merge pull request #202 from davemenninger/decode-spec
  • 5d755e2 Merge branch 'devinus:master' into patch-1
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)