betterself icon indicating copy to clipboard operation
betterself copied to clipboard

Published 20 hours ago verified publisher icon jeffshek

Update simplejson to 3.19.2

Open pyup-bot opened this issue 8 months ago • 0 comments

This PR updates simplejson from 3.13.2 to 3.19.2.

Changelog

3.19.2

* Updated test & build matrix to include Python 3.12 and use
GitHub Actions as a Trusted Publisher (OIDC)
https://github.com/simplejson/simplejson/pull/317

3.19.1

* This release contains security hardening measures based on recommendations
by a security audit sponsored by OSTIF and conducted by X41 D-Sec GmbH.
Several of these measures include changing defaults to be more strict,
by default simplejson will now only consume and produce compliant JSON,
but the flags still exist for any backwards compatibility needs.
No high priority issues were discovered, the reference count
leak is thought to be unreachable since the digits of the float are
checked before PyOS_string_to_double is called.
A link to the public version of this report will be included in a
future release of simplejson. The following fixes were implemented in
one PR: https://github.com/simplejson/simplejson/pull/313
* Fix invalid handling of unicode escape sequences in the pure Python
implementation of the decoder (SJ-PT-23-01)
* Fix missing reference count decrease if PyOS_string_to_double raises
an exception in Python 2.x; was probably unreachable (SJ-PT-23-02)
* Backport the integer string length limitation from Python 3.11 to
limit quadratic number parsing (SJ-PT-23-03)
* Fix inconsistencies with error messages between the C and Python
implementations (SJ-PT-23-100)
* Remove unused unichr import from encoder (SJ-PT-23-101)
* Remove unused namedtuple_as_object and tuple_as_array arguments from
simplejson.load (SJ-PT-23-102)
* Remove vestigial _one_shot code from iterencode (SJ-PT-23-103)
* Change default of allow_nan from True to False and add allow_nan
to decoder (SJ-PT-23-107)

3.18.4

* Test the sdist to prevent future regressions
https://github.com/simplejson/simplejson/pull/311
* Enable ppc64le wheels
https://github.com/simplejson/simplejson/pull/312

3.18.3

* Fix regression in sdist archive
https://github.com/simplejson/simplejson/pull/310

3.18.2

* Distribute a pure python wheel for Pyodide
https://github.com/simplejson/simplejson/pull/308

3.18.1

* Remove unnecessary `i` variable from encoder module namespace
https://github.com/simplejson/simplejson/pull/303
* Declare support for Python 3.11 and add wheels
https://github.com/simplejson/simplejson/pull/305

3.18.0

* Allow serialization of classes that implement for_json or _asdict by
ignoring TypeError when those methods are called
https://github.com/simplejson/simplejson/pull/302
* Raise JSONDecodeError instead of ValueError in invalid unicode escape
sequence edge case
https://github.com/simplejson/simplejson/pull/298

3.17.6

* Declare support for Python 3.10 and add wheels
https://github.com/simplejson/simplejson/pull/291
https://github.com/simplejson/simplejson/pull/292

3.17.5

* Fix the C extension module to harden is_namedtuple against looks-a-likes such
as Mocks. Also prevent dict encoding from causing an unraised SystemError when
encountering a non-Dict. Noticed by running user tests against a CPython
interpreter with C asserts enabled (COPTS += -UNDEBUG).
https://github.com/simplejson/simplejson/pull/284

3.17.4

* Upgrade cibuildwheel
https://github.com/simplejson/simplejson/pull/287

3.17.3

* Replaced Travis-CI and AppVeyor with Github Actions,
adding wheels for Python 3.9.
https://github.com/simplejson/simplejson/pull/283

3.17.2

* Added arm64 to build matrix and reintroduced
manylinux wheels
https://github.com/simplejson/simplejson/pull/264
* No more bdist_wininst builds per PEP 527
https://github.com/simplejson/simplejson/pull/260
* Minor grammatical issue fixed in README
https://github.com/simplejson/simplejson/pull/261

3.17.0

* Updated documentation to be Python 3 first, and
have removed documentation notes about version changes
that occurred more than five years ago.
https://github.com/simplejson/simplejson/pull/257
https://github.com/simplejson/simplejson/pull/254
* Update build matrix for Python 3.8
https://github.com/simplejson/simplejson/pull/255
https://github.com/simplejson/simplejson/pull/256

3.16.1

* Added examples for JSON lines use cases
https://github.com/simplejson/simplejson/pull/236
* Add wheels for more Python versions and platforms
https://github.com/simplejson/simplejson/pull/234
https://github.com/simplejson/simplejson/pull/233
https://github.com/simplejson/simplejson/pull/231

3.16.0

* Restore old behavior with regard to the type of decoded empty
strings with speedups enabled on Python 2.x
https://github.com/simplejson/simplejson/pull/225
* Add python_requires to setup.py to help pip
https://github.com/simplejson/simplejson/pull/224
* Fix CSS in docs when built locally
https://github.com/simplejson/simplejson/pull/222

3.15.0

* Clean up the C code
https://github.com/simplejson/simplejson/pull/220
* Bypass the decode() method in bytes subclasses
https://github.com/simplejson/simplejson/pull/219
* Support builds without cStringIO
https://github.com/simplejson/simplejson/pull/217
* Allow to disable serializing bytes by default in Python 3
https://github.com/simplejson/simplejson/pull/216
* Simplify the compatibility code
https://github.com/simplejson/simplejson/pull/215
* Fix tests in Python 2.5
https://github.com/simplejson/simplejson/pull/214

3.14.0

* Defer is_raw_json test (performance improvement)
https://github.com/simplejson/simplejson/pull/212
* Avoid escaping U+2028 and U+2029 without ensure_ascii
https://github.com/simplejson/simplejson/pull/211
* Fix an incorrect type test in Python 2, avoiding an unnecessary unicode copy.
https://github.com/simplejson/simplejson/pull/210
Links
  • PyPI: https://pypi.org/project/simplejson
  • Changelog: https://data.safetycli.com/changelogs/simplejson/
  • Repo: https://github.com/simplejson/simplejson

pyup-bot avatar Oct 06 '23 09:10 pyup-bot