log-record icon indicating copy to clipboard operation
log-record copied to clipboard

Published 20 hours ago verified publisher icon qqxx6661

chore(deps): bump fastjson from 1.2.83 to 2.0.26

Open dependabot[bot] opened this issue 1 year ago • 1 comments

Bumps fastjson from 1.2.83 to 2.0.26.

Release notes

Sourced from fastjson's releases.

fastjson 2.0.26发布

这次的发布是为dubbo 3.2.0发布准备,修复dubbo社区反馈的bug,dubbo 3.2.0会将默认序列化协议从hessian切换到fastjson2的二进制协议jsonb。

最近从fastjson 1.x升级的用户快速增加,这次的发布修复了一些大家升级发现的兼容问题和BUG。

性能测试报告

fastjson2每次发布前都会跑一次性能测试。fastjson 2.0.26的性能测试的硬件环境增加了Orange Pi 5 和Apple M1 Pro,JDK则增加graalvm ce和graalvm ee。

测试报告:https://github.com/alibaba/fastjson2/wiki/fastjson_benchmark , 具体数据看这里 https://github.com/alibaba/fastjson2/blob/main/docs/benchmark/benchmark_2.0.26.md

Issues

  1. 修复dubbo社区反馈的二进制格式JSONB反序列化带类型信息的Exception类时解析报错的问题 #1175
  2. 修复反序列化List类型不支持Object类型输入和fastjson 1.x不兼容的问题 #1240
  3. 修复JSONPath一次读取多个path某些场景结果不对的问题 #1130
  4. 修复parseObject(input, TypeReference)类型推断和fastjson 1.x不兼容的问题 #1222
  5. 修复某些场景复杂对象序列化引用计算不对或者报错的问题 #1234 #1242
  6. 修复toJavaObject某些情况下构造函数输入参数类型不匹配时不错的问题 #1233
  7. 支持注册自定义java.util.Date类型的ObjectReader #1227
  8. JSONPath支持不过滤null属性 #1159
  9. 修复对象带Lambda字段序列化报错的问题 #1177
  10. 增强日期类型对epochMillis字符串输入的支持 #1231
  11. 修复Feature.WriteBooleanAsNumber不生效的问题 #1241
  12. 修复某些场景JSONField不生效的问题 #1246
  13. 修复在List/Map类型上使用JSONField#deserializeUsing定制反序列化报错的问题 #1249

MAVEN依赖配置

<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2</artifactId>
    <version>2.0.26</version>
</dependency>
  • 1.x 兼容版本
<dependency>
    <groupId>com.alibaba</groupId>
    <artifactId>fastjson</artifactId>
    <version>2.0.26</version>
</dependency>
  • Spring 5 extension配置
<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2-extension-spring5</artifactId>
    <version>2.0.26</version>
</tr></table>

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Mar 20 '23 06:03 dependabot[bot]

Codecov Report

Merging #65 (812dab1) into master (bc61d04) will not change coverage. The diff coverage is n/a.

:mega: This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more

@@            Coverage Diff            @@
##             master      #65   +/-   ##
=========================================
  Coverage     61.86%   61.86%           
  Complexity      134      134           
=========================================
  Files            20       20           
  Lines           611      611           
  Branches         90       90           
=========================================
  Hits            378      378           
  Misses          188      188           
  Partials         45       45
Flag Coverage Δ
unittests 61.86% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

codecov-commenter avatar Mar 20 '23 06:03 codecov-commenter

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot[bot] avatar Jun 01 '24 09:06 dependabot[bot]