Skip to content

build(deps): bump org.json:json from 20251224 to 20260522#489

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/org.json-json-20260522
Open

build(deps): bump org.json:json from 20251224 to 20260522#489
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/maven/org.json-json-20260522

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 25, 2026
edited
Loading

Bumps org.json:json from 20251224 to 20260522.

Release notes

Sourced from org.json:json's releases.

20260522

Pull Request Description
#1054 pre-release-20260522 prep for next release
#1053 update security.md with key data
#1046 Validate XML numeric character references before string construction
#1044 Ignore static fields in JSONObject.fromJson()
#1041 Enhance README with license clarification
#1039 Fix XML forceList parsing issue
#1038 Fix input validation in XMLTokener.unescapeEntity()
#1037 Fix ClassCastException in JSONML.toJSONArray and toJSONObject
#1029 add badge to external hosted javadoc
#1028 Refactoring: Fix sonarqube reliability issues
#1027 Save/restore default locale in test
Changelog

Sourced from org.json:json's changelog.

20260522 Publish key data, recent commits for minor fixes

Commits
  • 968a592 Merge pull request #1054 from stleary/pre-release-20260522
  • 3665aad pre-release-20260522 doc and build updates for release
  • d749ee1 Merge pull request #1053 from stleary/update-security-md-with-key
  • 6495983 update-security-md-with-key new security.md file, also fixed 1000 level jsona...
  • 896ce0f Merge pull request #1046 from yuki-matsuhashi/master
  • 1877069 Validate XML numeric character references before string construction
  • b959027 Merge pull request #1044 from yuki-matsuhashi/1043-ignore-static
  • 039f331 Add comment for empty test constructor
  • 94e3400 Ignore static fields in JSONObject.fromJson()
  • 6230128 Merge pull request #1041 from stleary/license-clarification
  • Additional commits viewable in compare view

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file java Pull requests that update java code labels May 25, 2026
@github-actions github-actions Bot added the build-ci Build or CI changes label May 25, 2026
@github-actions
Copy link
Copy Markdown
Contributor

github-actions Bot commented May 25, 2026
edited
Loading

📊 Benchmark Results

Triggered by workflow run.

Benchmark Score Error Unit
🟢 detectModuleType 0.002 ±0.000 ms/op
🟢 parseModule 1.528 ±10.637 ms/op
🟢 detectModuleType 0.000 ±0.000 ms/op
🟢 parseModule 0.099 ±0.525 ms/op
🟢 detectModuleType 0.190 ±0.428 ms/op
🟢 parseModule 0.605 ±1.744 ms/op
🟢 detectModuleType 0.141 ±0.234 ms/op
🟢 parseModule 1.251 ±4.788 ms/op

All benchmarks passed performance thresholds.

@dependabot dependabot Bot force-pushed the dependabot/maven/org.json-json-20260522 branch from ade0333 to d5132dc Compare May 25, 2026 17:00
@dependabot
build(deps): bump org.json:json from 20251224 to 20260522
ffa414e 
Bumps [org.json:json](https://github.com/douglascrockford/JSON-java) from 20251224 to 20260522.
- [Release notes](https://github.com/douglascrockford/JSON-java/releases)
- [Changelog](https://github.com/stleary/JSON-java/blob/master/docs/RELEASES.md)
- [Commits](stleary/JSON-java@2025122...2026052)

---
updated-dependencies:
- dependency-name: org.json:json
  dependency-version: '20260522'
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/maven/org.json-json-20260522 branch from d5132dc to ffa414e Compare May 25, 2026 17:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

build-ci Build or CI changes dependencies Pull requests that update a dependency file java Pull requests that update java code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants