nragaz / jcrop-rails

Other
24 stars 23 forks source link

Bump json from 1.6.5 to 1.8.6 #11

Open dependabot[bot] opened 5 years ago

dependabot[bot] commented 5 years ago

Bumps json from 1.6.5 to 1.8.6.

Changelog *Sourced from [json's changelog](https://github.com/flori/json/blob/v1.8.6/CHANGES).* > 2017-01-13 (1.8.6) > * Be compatible with ancient ruby 1.8 (maybe?) > 2015-09-11 (1.8.5) > * Be compatible with ruby 2.4.0 > * There were still some mentions of dual GPL licensing in the source, but JSON > has just the Ruby license that itself includes an explicit dual-licensing > clause that allows covered software to be distributed under the terms of > the Simplified BSD License instead for all ruby versions >= 1.9.3. This is > however a GPL compatible license according to the Free Software Foundation. > I changed these mentions to be consistent with the Ruby license setting in > the gemspec files which were already correct now. > ---------- (1.8.4) Skipped. > 2015-06-01 (1.8.3) > * Fix potential memory leak, thx to nobu. > 2015-01-08 (1.8.2) > * Some performance improvements by Vipul A M . > * Fix by Jason R. Clark to avoid mutation of > JSON.dump_default_options. > * More tests by Michael Mac-Vicar and fixing > space_before accessor in generator. > * Performance on Jruby improvemed by Ben Browning . > * Some fixes to be compatible with the new Ruby 2.2 by Zachary Scott > and SHIBATA Hiroshi . > 2013-05-13 (1.8.1) > * Remove Rubinius exception since transcoding should be working now. > 2013-05-13 (1.8.0) > * Fix [flori/json#162](https://github-redirect.dependabot.com/flori/json/issues/162) reported by Marc-Andre > Lafortune . Thanks! > * Applied patches by Yui NARUSE to suppress warning with > -Wchar-subscripts and better validate UTF-8 strings. > * Applied patch by ginriki@github to remove unnecessary if. > * Add load/dump interface to JSON::GenericObject to make > serialize :some_attribute, JSON::GenericObject > work in Rails active models for convenient SomeModel#some_attribute.foo.bar > access to serialised JSON data. > 2013-02-04 (1.7.7) > * Security fix for JSON create_additions default value and > JSON::GenericObject. It should not be possible to create additions unless > explicitely requested by setting the create_additions argument to true or > using the JSON.load/dump interface. If JSON::GenericObject is supposed to > be automatically deserialised, this has to be explicitely enabled by > setting > JSON::GenericObject.json_creatable = true > as well. > * Remove useless assert in fbuffer implementation. > * Apply patch attached to https://github.com/flori/json/issues#issue/155 > provided by John Shahid , Thx! > * Add license information to rubygems spec data, reported by Jordi Massaguer Pla . > * Improve documentation, thx to Zachary Scott . > 2012-11-29 (1.7.6) > ... (truncated)
Commits - [`7f4cfd8`](https://github.com/flori/json/commit/7f4cfd853f2c919d854fb95548a19980feff17e8) Try to be compatible with ruby 1.8 - [`4cf6c62`](https://github.com/flori/json/commit/4cf6c6270f52888997ec1b626b9f557db4f26f2e) Update gemspecs - [`48c5e99`](https://github.com/flori/json/commit/48c5e9943d0c31f0fd4a10b0eb38758e8b4241c6) Stop testing on 1.8, it might work though - [`5d46fb9`](https://github.com/flori/json/commit/5d46fb99a14cd96e1d838b1fc36f5b86be307219) Travis don't know how to build these rubies - [`7f05140`](https://github.com/flori/json/commit/7f05140864938a1c3462cb5513602ac7c4c50ac3) Fix conversion crash on 1.9 - [`2bcacc1`](https://github.com/flori/json/commit/2bcacc1eb0367f08d6f2415ddc8352bcf9d932cb) Require ruby version 2.0 or better - [`f8e2aa6`](https://github.com/flori/json/commit/f8e2aa692ed4e62c00bdf5de259456a21f8520b0) Reduce supported ruby versions - [`b4eeed1`](https://github.com/flori/json/commit/b4eeed15f86d1334fbbae1c0dc2f0b81593003fe) Test newer rubies - [`c7a6e31`](https://github.com/flori/json/commit/c7a6e31f3abde6efbf0629dea68b43bebb62c94a) Use 2.3.1 for testing - [`953f474`](https://github.com/flori/json/commit/953f474b7e19e748990cef3b26525846b7d4d6c2) Merge RUBY_INTEGER_UNIFICATION changes - Additional commits viewable in [compare view](https://github.com/flori/json/compare/v1.6.5...v1.8.6)


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/nragaz/jcrop-rails/network/alerts).