Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency org.json:json to v20231013 #74

Open
wants to merge 1 commit into
base: dev
Choose a base branch
from
Open

Update dependency org.json:json to v20231013 #74

wants to merge 1 commit into from

Conversation

mend-for-github-com[bot]
Copy link

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
org.json:json 20180130 -> 20231013 age adoption passing confidence

By merging this PR, the issue #71 will be automatically resolved and closed:

Severity CVSS Score CVE
High High 7.5 CVE-2022-45688
High High 7.5 CVE-2023-5072

Release Notes

douglascrockford/JSON-java (org.json:json)

v20231013

Compare Source

Pull Request Description
#​793 Reverted #​761
#​792 update the docs for release 2023101
#​783 optLong vs getLong inconsistencies
#​782 Fix XMLTest.testIndentComplicatedJsonObjectWithArrayAndWithConfig() for Windows
#​779 add validity check for JSONObject constructors
#​778 Fix XMLTest.testIndentComplicatedJsonObjectWithArrayAndWithConfig() for Windows
#​776 Update [JUnit to version 4.13.2
#​774 Removing unneeded synchronization
#​773 Add optJSONArray method to JSONObject with a default value
#​772 Disallow nested objects and arrays as keys in objects
#​779 Unit test cleanup
#​769 Addressed Java 17 compile warnings
#​764 Update CodeQL action version
#​761 Add module-info
#​759 JSON parsing should detect embedded 
#​753 Updated new object methods
#​752 Fixes possible unit test bug when compiling/testing on Windows

v20230618

Compare Source

Pull Request Description
#​749 Prep for release 20230618
#​740 Fixed Flaky Tests Caused by JSON permutations
#​734 Fixed Flaky Tests Caused by JSON permutations
#​733 JSONTokener implemented java.io.Closeable
#​731 Removing commented out code in JSONObject optDouble()
#​729 Refactor ParserConfiguration class hierarchy

v20230227

Compare Source

Pull Request Description
#​723 Protect JSONML from stack overflow exceptions caused by recursion
#​720 Limit the XML nesting depth for CVE-2022-45688
#​711 Revert pull 707 - interviewbit spam
#​704 Move javadoc comments above the interface definition to make it visible
#​703 Update Releases.md for JSONObject(Map): Throws NPE if key is null
#​696 Update JSONPointerTest for NonDex compatibility
#​694 Pretty print XML
#​692 Example.md syntax highlight and indentation
#​691 Create unit tests for various number formats

v20220924

Compare Source

Pull Request Description
#​688 Update copyright to Public Domain
#​687 Fix a typo
#​685 JSONObject map type unit tests
#​684 Remove v7 build from pipeline
#​682 JSONString similarity
#​675 https://github.com/stleary/JSON-java/pull/675

v20220320

Compare Source

Pull Request Description
#​660 Wrap StackOverflow with JSONException

v20211205

Compare Source

Pull Request Description
#​651 IdentityHashSet for JSONObject cycle detection
#​646 XMLParserConfiguration defined json arrays option
#​645 Handle circular references in Java beans
#​640 Unit tests for multiple backslashes in JSONPointer
#​637 Reorganized README.md
#​634 Update README with Unix examples
#​631 Refactor JSONPointerTest
#​626 Add CODE_OF_CONDUCT.md
#​622 Clean up readme.md
#​621 Clean up comments
#​617 JSONObject.similar() numeric compare bug fix
#​613 JsonObject.similar() number entry check bug fix
#​610 optJSONObject() add default value
#​607 Add Security.md policy page
#​606 Clean up comments, add suppressWarning annotation
#​604 Fixed incorrect cast getting float from array
#​601 Added Examples.md for new users
#​594 JSONStringer.java: fix max nesting level in javadoc

v20210307

Compare Source

Pull Request Description
#​575 Fix similar compare numbers
#​577 Added clear() methods to JSONObject and JSONArray
#​581 Use built-in Gradle shorthand notation for Maven Central repository
#​583 Checked the length of key for checker framework
#​588 JSONPointer should not process reverse solidus or double-quote chars in tokens

NOTE:

#​588 is a potentially breaking change to JSONPointer. Embedded double quote and backslash chars are now handled differently (they are basically ignored by the JSONPointer parser). If this causes problems to your project, post an issue on the JSON-Java GitHub page.

v20201115

Compare Source

Pull Request Description
#​515 Merge tests and pom and code
#​519 Gradle support
#​521 Updates Cookie class to be more generic in attribute parsing and emit
#​524 JSONArray does not have constructor to allocate the specified initial capacity
#​525 Unit test fixes
#​526 Comment out some broken unit tests
#​527 Fixes for Unit tests and supports GitHub Actions
#​529 Added putAll(Collection) and putAll(Array) methods
#​532 Verifies BigDecimal support does not have a regression
#​538 Explain local builds in the readme, fix a couple of typos
#​539 Bring Junit tests to Java 1.6 compatibility
#​540 Added type conversion support
#​542 Fix xml hex entity parse
#​543 Refactor XMLConfiguration to use Builder Pattern
#​549 Update readme.md
#​552 Updates for JSONArray.putAll methods
#​570 Readme - fix spelling and usage, per Grammarly

v20200518

Compare Source

Pull Request Description
#​502 Update JSONTokener text in README
#​499 Add copyright to some files
#​495 Refactor typos from code
#​494 Replace JSONObject constructor string arrays with var args
#​492 Clarify output of JSONArray toList()
#​486 Standardize some exception messages
#​485 Fix EOF error when Meta tag isn't closed at end of input.
#​483 Update README.md to point to latest released jar
#​481 Clarify exception when parser reads JSON
#​475 Make private methods static where possible
#​474 Replaces an internally used inefficient StringBuffer class

v20190722

Compare Source

Pull Request Description
#​467 add configuration for xsi:nil="true" conversion to null
#​452 Adds check for EOF
#​440 Corrections to BigDecimal consistency
#​432 Update README.md
#​421 add isEmpty and isNotEmpty methods
#​417 fix double ctor in JSONWriter
#​412 Initial implementation of XMLParserConfig object for flexible XML Parsing
#​407 Fix for invalid processing of trailing / for JSON Pointer
#​406 Adds annotations to customize field names during Bean serialization

v20180813

Compare Source

Pull Request | Description
---- | ----
#​405 | Update javadoc to match actual exceptions thrown. BREAKING CHANGE: JSONObject(Map) now throws an exception if any of a map keys are null. |
#​403 | Ignore Intellij Idea project files
#​400 | XML toJSONObject(Reader reader)

  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com bot added the security fix Security fix generated by WhiteSource label Jan 4, 2024
@mend-for-github-com mend-for-github-com bot force-pushed the whitesource-remediate/org.json-json-20231013.x branch from 33694a7 to 101ecab Compare February 24, 2024 04:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants