wanglingsong / JsonSurfer

A streaming JsonPath processor in Java
MIT License
294 stars 55 forks source link

Bump the minor-updates group with 10 updates #93

Closed dependabot[bot] closed 11 months ago

dependabot[bot] commented 11 months ago

Bumps the minor-updates group with 10 updates:

Package From To
ch.qos.logback:logback-classic 1.4.11 1.4.13
org.mockito:mockito-core 5.5.0 5.7.0
org.apache.maven.plugins:maven-javadoc-plugin 3.6.0 3.6.2
com.fasterxml.jackson.core:jackson-databind 2.15.2 2.16.0
com.fasterxml.jackson.dataformat:jackson-dataformat-cbor 2.15.2 2.16.0
com.fasterxml.jackson.dataformat:jackson-dataformat-smile 2.15.2 2.16.0
com.fasterxml.jackson.dataformat:jackson-dataformat-ion 2.15.2 2.16.0
com.fasterxml.jackson.dataformat:jackson-dataformat-protobuf 2.15.2 2.16.0
com.fasterxml.jackson.dataformat:jackson-dataformat-avro 2.15.2 2.16.0
com.alibaba:fastjson 2.0.40 2.0.42

Updates ch.qos.logback:logback-classic from 1.4.11 to 1.4.13

Commits
  • 7ee000a prepare release 1.4.13
  • 867bf58 remove superflus system.out call
  • 88abf59 prepare release 1.4.12
  • 2cd8cab cater for array size marked with -1
  • 9c782b4 prevent DOS attacks using on malicious serialized input
  • f6d690d further support for Virtual threads, issues 737
  • 9a1fc44 add support for Virtual threads
  • 410ad18 parameterizable invocation gate delay
  • 2946e3b minor refactoring
  • bf59a63 fix guthub issue 715
  • Additional commits viewable in compare view


Updates org.mockito:mockito-core from 5.5.0 to 5.7.0

Release notes

Sourced from org.mockito:mockito-core's releases.

v5.7.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.7.0

v5.6.0

Changelog generated by Shipkit Changelog Gradle Plugin

5.6.0

... (truncated)

Commits
  • 5c4e72c Bump org.jetbrains.kotlin:kotlin-gradle-plugin from 1.9.10 to 1.9.20 (#3166)
  • f62fbe7 Bump org.jetbrains.kotlin:kotlin-stdlib from 1.9.10 to 1.9.20 (#3165)
  • f522f49 Attempt to detect system property mangling prior to loading ByteBuddy. (#3164)
  • a8adbf5 Handle Termux in InlineDelegateByteBuddyMockMaker.java (#3158)
  • 1bca5b8 Bump versions.errorprone from 2.22.0 to 2.23.0 (#3153)
  • f5449f9 Fix license url according to spdx license spec (#3152)
  • 73d6afc Remove checks for unsupported Java version from unit tests (#3150)
  • e736992 Add CodeCov token to upload coverage report (#3149)
  • 9342e9a Add Java 21 to CI build matrix (#3145)
  • c574cea Update JaCoCo to 0.8.11 (#3147)
  • Additional commits viewable in compare view


Updates org.apache.maven.plugins:maven-javadoc-plugin from 3.6.0 to 3.6.2

Release notes

Sourced from org.apache.maven.plugins:maven-javadoc-plugin's releases.

3.6.2

🐛 Bug Fixes

📦 Dependency updates

Commits
  • 28a89f1 [maven-release-plugin] prepare release maven-javadoc-plugin-3.6.2
  • 16ca43f [maven-release-plugin] prepare for next development iteration
  • 88bc4a5 Align IT after MJAVADOC-716
  • 4b881e8 Bump org.codehaus.mojo:mrm-maven-plugin from 1.5.0 to 1.6.0
  • 45a8d29 [MJAVADOC-716] Fix stale files detection failing because of the added newline...
  • afb2dee [MJAVADOC-713] Skipping Javadoc reportset leaves empty Javadoc link in site
  • 4bad23f [MJAVADOC-730] Deprecate parameter "old"
  • 8364883 [MJAVADOC-777] Bump org.codehaus.plexus:plexus-java from 1.1.2 to 1.2.0 (#245)
  • 6fa9c86 [MJAVADOC-762] don't share state between tests (#218)
  • 05b12e8 [MJAVADOC-726] exclude velocity (#243)
  • Additional commits viewable in compare view


Updates com.fasterxml.jackson.core:jackson-databind from 2.15.2 to 2.16.0

Commits


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-cbor from 2.15.2 to 2.16.0

Commits


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-smile from 2.15.2 to 2.16.0

Commits


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-ion from 2.15.2 to 2.16.0

Commits


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-protobuf from 2.15.2 to 2.16.0

Commits


Updates com.fasterxml.jackson.dataformat:jackson-dataformat-avro from 2.15.2 to 2.16.0

Commits


Updates com.alibaba:fastjson from 2.0.40 to 2.0.42

Release notes

Sourced from com.alibaba:fastjson's releases.

fastjson 2.0.42发布

这又是例行的BUG修复小版本,大家按需升级。

Issues

  1. 修复JSONB协议反序列化读取java.time类型的NULL值报错的问题 #1855
  2. 反序列化增加JSONReader.Feature.ErrorOnUnknownProperties,支持当输入非预期字段时报错 #1944
  3. 修复使用兼容包的JSONPath.set不兼容的问题 #1922
  4. 修复反序列化超过256位小数时报错的问题,缺省支持2048位小数 #1919
  5. 修复序列化时List类型字段配置JSONField.serializeUsing无效的问题 #1948
  6. 修复序列化时List类型字段配置JSONField.serializeFeatures WriteClassName无效的问题 #1947
  7. 修复序列化时WriteNullNumberAsZero和WriteLongAsString组合不生效的问题 #1893
  8. 修复JSONPath在连续数组访问时空值报错的问题 #1965
  9. 修复不支持多行注释的问题 #1954
  10. 修复输入对象类型输入空数组"[]"报错的问题(兼容)#1971
  11. 修复处理JacksonAnnotation的问题 #1985
  12. 修复LocalDate类型反序列化输入'Z'后缀格式UTC时区结果不对的问题 #1993

MAVEN依赖配置

<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2</artifactId>
    <version>2.0.42</version>
</dependency>
  • android4兼容版本
<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2</artifactId>
    <version>2.0.42.android4</version>
</dependency>
  • 1.x 兼容版本
<dependency>
    <groupId>com.alibaba</groupId>
    <artifactId>fastjson</artifactId>
    <version>2.0.42</version>
</dependency>
  • Spring 5 extension配置
<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2-extension-spring5</artifactId>
</tr></table> 

... (truncated)

Commits


Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore ` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore ` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore ` will remove the ignore condition of the specified dependency and ignore conditions
dependabot[bot] commented 11 months ago

Superseded by #94.