Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update dependency org.json:json to v20230227 - autoclosed #65

Closed
wants to merge 1 commit into from
Closed

Update dependency org.json:json to v20230227 - autoclosed #65

wants to merge 1 commit into from

Conversation

whitesource-demo[bot]
Copy link

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
org.json:json 20190722 -> 20230227 age adoption passing confidence

By merging this PR, the below vulnerabilities will be automatically resolved:

Severity CVSS Score CVE
High High 7.5 CVE-2022-45688

Release Notes

douglascrockford/JSON-java

v20230227

Compare Source

Pull Request Description
#​723 Protect JSONML from stack overflow exceptions caused by recursion
#​720 Limit the XML nesting depth for CVE-2022-45688
#​711 Revert pull 707 - interviewbit spam
#​704 Move javadoc comments above the interface definition to make it visible
#​703 Update Releases.md for JSONObject(Map): Throws NPE if key is null
#​696 Update JSONPointerTest for NonDex compatibility
#​694 Pretty print XML
#​692 Example.md syntax highlight and indentation
#​691 Create unit tests for various number formats

v20220924

Compare Source

Pull Request Description
#​688 Update copyright to Public Domain
#​687 Fix a typo
#​685 JSONObject map type unit tests
#​684 Remove v7 build from pipeline
#​682 JSONString similarity
#​675 stleary/JSON-java#675

v20220320

Compare Source

Pull Request Description
#​660 Wrap StackOverflow with JSONException

v20211205

Compare Source

Pull Request Description
#​651 IdentityHashSet for JSONObject cycle detection
#​646 XMLParserConfiguration defined json arrays option
#​645 Handle circular references in Java beans
#​640 Unit tests for multiple backslashes in JSONPointer
#​637 Reorganized README.md
#​634 Update README with Unix examples
#​631 Refactor JSONPointerTest
#​626 Add CODE_OF_CONDUCT.md
#​622 Clean up readme.md
#​621 Clean up comments
#​617 JSONObject.similar() numeric compare bug fix
#​613 JsonObject.similar() number entry check bug fix
#​610 optJSONObject() add default value
#​607 Add Security.md policy page
#​606 Clean up comments, add suppressWarning annotation
#​604 Fixed incorrect cast getting float from array
#​601 Added Examples.md for new users
#​594 JSONStringer.java: fix max nesting level in javadoc

v20210307

Compare Source

Pull Request Description
#​575 Fix similar compare numbers
#​577 Added clear() methods to JSONObject and JSONArray
#​581 Use built-in Gradle shorthand notation for Maven Central repository
#​583 Checked the length of key for checker framework
#​588 JSONPointer should not process reverse solidus or double-quote chars in tokens

NOTE:

#​588 is a potentially breaking change to JSONPointer. Embedded double quote and backslash chars are now handled differently (they are basically ignored by the JSONPointer parser). If this causes problems to your project, post an issue on the JSON-Java GitHub page.

v20201115

Compare Source

Pull Request Description
#​515 Merge tests and pom and code
#​519 Gradle support
#​521 Updates Cookie class to be more generic in attribute parsing and emit
#​524 JSONArray does not have constructor to allocate the specified initial capacity
#​525 Unit test fixes
#​526 Comment out some broken unit tests
#​527 Fixes for Unit tests and supports GitHub Actions
#​529 Added putAll(Collection) and putAll(Array) methods
#​532 Verifies BigDecimal support does not have a regression
#​538 Explain local builds in the readme, fix a couple of typos
#​539 Bring Junit tests to Java 1.6 compatibility
#​540 Added type conversion support
#​542 Fix xml hex entity parse
#​543 Refactor XMLConfiguration to use Builder Pattern
#​549 Update readme.md
#​552 Updates for JSONArray.putAll methods
#​570 Readme - fix spelling and usage, per Grammarly

v20200518

Compare Source

Pull Request Description
#​502 Update JSONTokener text in README
#​499 Add copyright to some files
#​495 Refactor typos from code
#​494 Replace JSONObject constructor string arrays with var args
#​492 Clarify output of JSONArray toList()
#​486 Standardize some exception messages
#​485 Fix EOF error when Meta tag isn't closed at end of input.
#​483 Update README.md to point to latest released jar
#​481 Clarify exception when parser reads JSON
#​475 Make private methods static where possible
#​474 Replaces an internally used inefficient StringBuffer class
  • If you want to rebase/retry this PR, click this checkbox.

@whitesource-demo whitesource-demo bot added the security fix Security fix generated by WhiteSource label Aug 31, 2023
@whitesource-demo whitesource-demo bot changed the title Update dependency org.json:json to v20230227 Update dependency org.json:json to v20230227 - autoclosed Nov 5, 2023
@whitesource-demo whitesource-demo bot closed this Nov 5, 2023
@whitesource-demo whitesource-demo bot deleted the whitesource-remediate/org.json-json-20230227.x branch November 5, 2023 20:06
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
security fix Security fix generated by WhiteSource
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
0 participants