Update dependency json_pure to '<= 2.6.3' - autoclosed #14

tradeshift-renovate · 2023-06-06T10:21:11Z

This PR contains the following updates:

Package	Update	Change
json_pure (source, changelog)	minor	`'<= 2.0.1'` -> `'<= 2.6.3'`

Release Notes

flori/json (json_pure)

`v2.6.3`

Compare Source

What's Changed

bugfix json/pure mixing escaped with literal unicode raises Encoding::CompatibilityError by @notEthan in https://github.com/flori/json/pull/483
Stop including the parser source LINE in exceptions by @casperisfine in https://github.com/flori/json/pull/470

New Contributors

@notEthan made their first contribution in https://github.com/flori/json/pull/483

Full Changelog: flori/json@v2.6.2...v2.6.3

`v2.6.2`

Compare Source

What's Changed

Remove unknown keyword arg from DateTime.parse by @headius in https://github.com/flori/json/pull/488
Ignore java artifacts by @hsbt in https://github.com/flori/json/pull/489
Fix parser bug for empty string allocation by @abrom in https://github.com/flori/json/pull/496

New Contributors

@abrom made their first contribution in https://github.com/flori/json/pull/496

Full Changelog: flori/json@v2.6.1...v2.6.2

`v2.6.1`

Compare Source

Restore version.rb with 2.6.1

`v2.6.0`

Compare Source

Use rb_enc_interned_str if available to reduce allocations in freeze: true mode. #451.
Bump required_ruby_version to 2.3.
Fix compatibility with GC.compact.
Fix some compilation warnings. #469

`v2.5.1`

Compare Source

Restore the compatibility for constants of JSON class.

`v2.5.0`

Compare Source

Ready to Ractor-safe at Ruby 3.0.

`v2.4.1`

Compare Source

Restore version.rb with 2.4.1

`v2.4.0`

Compare Source

Implement a freeze: parser option #447
Fix an issue with generate_pretty and empty objects in the Ruby and Java implementations #449
Fix JSON.load_file doc #448
Fix pure parser with unclosed arrays / objects #425
bundle the LICENSE file in the gem #444
Add an option to escape forward slash character #405
RDoc for JSON #439 #446 #442 #434 #433 #430

`v2.3.1`

Compare Source

Spelling and grammar fixes for comments. Pull request #191 by Josh
Kline.
Enhance generic JSON and #generate docs. Pull request #347 by Victor
Shepelev.
Add :nodoc: for GeneratorMethods. Pull request #349 by Victor Shepelev.
Baseline changes to help (JRuby) development. Pull request #371 by Karol
Bucek.
Add metadata for rubygems.org. Pull request #379 by Alexandre ZANNI.
Remove invalid JSON.generate description from JSON module rdoc. Pull
request #384 by Jeremy Evans.
Test with TruffleRuby in CI. Pull request #402 by Benoit Daloze.
Rdoc enhancements. Pull request #413 by Burdette Lamar.
Fixtures/ are not being tested... Pull request #416 by Marc-André
Lafortune.
Use frozen string for hash key. Pull request #420 by Marc-André
Lafortune.
Added :call-seq: to RDoc for some methods. Pull request #422 by Burdette
Lamar.
Small typo fix. Pull request #423 by Marc-André Lafortune.

`v2.3.0`

Compare Source

Fix default of create_additions to always be false for JSON(user_input)
and JSON.parse(user_input, nil).
Note that JSON.load remains with default true and is meant for internal
serialization of trusted data. [CVE-2020-10663]
Fix passing args all #to_json in json/add/*.
Fix encoding issues
Fix issues of keyword vs positional parameter
Fix JSON::Parser against bigdecimal updates
Bug fixes to JRuby port

`v2.2.0`

Compare Source

Adds support for 2.6 BigDecimal and ruby standard library Set datetype.

`v2.1.0`

Compare Source

Allow passing of decimal_class option to specify a class as which to parse
JSON float numbers.

`v2.0.4`

Compare Source

Raise exception for incomplete unicode surrogates/character escape
sequences. This problem was reported by Daniel Gollahon (dgollahon).
Fix arbitrary heap exposure problem. This problem was reported by Ahmad
Sherif (ahmadsherif).

`v2.0.3`

Compare Source

Set required_ruby_version to 1.9
Some small fixes

`v2.0.2`

Compare Source

Specify required_ruby_version for json_pure.
- Fix issue #295 failure when parsing frozen strings.

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

Update dependency json_pure to '<= 2.6.3'

d285335

tradeshift-renovate bot added the dependencies label Jun 6, 2023

tssecurity approved these changes Jun 6, 2023

View reviewed changes

tradeshift-renovate bot changed the title ~~Update dependency json_pure to '<= 2.6.3'~~ Update dependency json_pure to '<= 2.6.3' - autoclosed Aug 29, 2023

tradeshift-renovate bot closed this Aug 29, 2023

tradeshift-renovate bot deleted the renovate/json_pure-2.x branch August 29, 2023 07:30

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Update dependency json_pure to '<= 2.6.3' - autoclosed #14

Update dependency json_pure to '<= 2.6.3' - autoclosed #14

tradeshift-renovate bot commented Jun 6, 2023 •

edited

Update dependency json_pure to '<= 2.6.3' - autoclosed #14

Update dependency json_pure to '<= 2.6.3' - autoclosed #14

Conversation

tradeshift-renovate bot commented Jun 6, 2023 • edited

Release Notes

What's Changed

New Contributors

What's Changed

New Contributors

Configuration

tradeshift-renovate bot commented Jun 6, 2023 •

edited