Skip to content

Bump Newtonsoft.Json from 10.0.3 to 12.0.3 in /lang/csharp#990

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/nuget/lang/csharp/Newtonsoft.Json-12.0.3
Closed

Bump Newtonsoft.Json from 10.0.3 to 12.0.3 in /lang/csharp#990
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/nuget/lang/csharp/Newtonsoft.Json-12.0.3

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 17, 2020
edited
Loading

Bumps Newtonsoft.Json from 10.0.3 to 12.0.3.

Release notes

Sourced from Newtonsoft.Json's releases.

12.0.3

  • New feature - Added support for nullable reference types
  • New feature - Added KebabCaseNamingStrategy
  • Change - Package now uses embedded package icon
  • Fix - Fixed bug when merging JToken with itself
  • Fix - Fixed performance of calling ICustomTypeDescriptor.GetProperties
  • Fix - Fixed serializing Enumerable.Empty and empty arrays on .NET Core 3.0
  • Fix - Fixed deserializing some collection types with constructor
  • Fix - Fixed deserializing IImmutableSet to ImmutableHashSet instead of ImmutableSortedSet
  • Fix - Fixed deserializing IImmutableDictionary to ImmutableDictionary instead of ImmutableSortedDictionary
  • Fix - Fixed deserializing into constructors with more than 256 parameters
  • Fix - Fixed hang when deserializing JTokenReader with preceding comment
  • Fix - Fixed JSONPath scanning with nested indexer
  • Fix - Fixed deserializing incomplete JSON object to JObject
  • Fix - Fixed using StringEnumConverter with naming strategy and specified values

12.0.2

  • New feature - Added MissingMemberHandling to JsonObjectAttribute and JsonObjectContract
  • New feature - Added constructor to JTokenReader to specify initial path
  • New feature - Added JsonProperty.IsRequiredSpecified
  • New feature - Added JsonContract.InternalConverter
  • Change - Moved embedded debug symbols in NuGet package to a symbol package on NuGet.org
  • Fix - Fixed deserializing nullable struct collections
  • Fix - Fixed memory link when serializing enums to named values
  • Fix - Fixed error when setting JsonLoadSettings.DuplicatePropertyNameHandling to Replace

12.0.1

  • New feature - Added NuGet package signing
  • New feature - Added Authenticode assembly signing
  • New feature - Added SourceLink support
  • New feature - Added constructors to StringEnumConverter for setting AllowIntegerValue
  • New feature - Added JsonNameTable and JsonTextReader.PropertyNameTable
  • New feature - Added line information to JsonSerializationException
  • New feature - Added JObject.Property overload with a StringComparison
  • New feature - Added JsonMergeSettings.PropertyNameComparison
  • New feature - Added support for multiple Date constructors with JavaScriptDateTimeConverter
  • New feature - Added support for strict equals and strict not equals in JSON Path queries
  • New feature - Added EncodeSpecialCharacters setting to XmlNodeConverter
  • New feature - Added trace message for serializing to non-writable properties
  • New feature - Added support for NamingStrategy to StringEnumConverter
  • New feature - Added JsonLoadSettings.DuplicatePropertyNameHandling setting
  • Change - JTokenReader now uses JsonReader.DateTimeZoneHandling setting for date values
  • Change - Excluded TargetSite when serializing Exceptions without SerializableAttribute
  • Change - Changed StringEnumConverter.ctor(bool camelCaseText) to obsolete
  • Change - Changed StringEnumConverter.CamelCaseText to obsolete
  • Fix - Fixed incorrect overflow when reading decimal values from JSON
  • Fix - Fixed error message when trying to deserialize an abstract serializable type
  • Fix - Fixed parsing decimals from a string with an exponent
  • Fix - Fixed losing DateTime.Kind when deserializing ISO date strings
  • Fix - Fixed calling constructors with ref and in parameters

... (truncated)

Commits
  • 7c3d7f8 Update version to 12.0.3
  • 0688f3f Embiggen package icon
  • cb09e67 Update package to use embedded PackageIcon
  • e27710f Update version to 12.0.3-beta2
  • 23be46f Fix using StringEnumConverter with naming strategy and specifie… (#2186)
  • ff6f51b Added KebabCaseNamingStrategy
  • baa1e21 Fix deserializing incomplete JSON object to JObject (#2181)
  • 541eab2 Fix JSONPath scanning with nested indexer (#2180)
  • c89d6ad Update dependencies from .NET Core 3.0 (#2179)
  • 3219c47 Fix hang when deserializing JTokenReader with preceding comment (#2178)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Nov 17, 2020
@github-actions github-actions bot added the C# label Nov 17, 2020
blachniet
blachniet reviewed Nov 18, 2020
View reviewed changes
lang/csharp/src/apache/main/Avro.main.csproj Outdated
<IncludeAssets>runtime; build; native; contentfiles; analyzers; buildtransitive</IncludeAssets>
</PackageReference>
<PackageReference Include="Newtonsoft.Json" Version="10.0.3" />
<PackageReference Include="Newtonsoft.Json" Version="12.0.3" />
Copy link
Member

@blachniet blachniet Nov 18, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hey @iemejia,

We actually don't want to update this dependency in this library. There's an extended description of the problem here.

The docs here show how I can configure ignored_updates in the dependabot.yml. Is there a way I can test out locally that the configuration change is working?

Copy link
Member

@iemejia iemejia Nov 18, 2020
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

No idea, maybe this would appear in https://github.com/apache/avro/network/updates of your fork but not sure. Maybe enabling this in your fork will help you see it somewhere, notice that if you enable this in your fork you will be swamped by PR requests.

The syntax for github's dependabot is not the same of the one on your link, it is v2 and I have not found the docs for that, the closest I found was VS Code helping me with suggestions (It uses this schema https://json.schemastore.org/dependabot-2.0).

    ignore:
      - dependency-name: Newtonsoft.Json

Copy link
Member

@iemejia iemejia Nov 18, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Feel free to close this PR then if we should not take this update.

@iemejia
Copy link
Member

iemejia commented Feb 15, 2021

@dependabot rebase

@dependabot dependabot bot force-pushed the dependabot/nuget/lang/csharp/Newtonsoft.Json-12.0.3 branch from 8739af0 to 36696ce Compare February 15, 2021 13:55
@dependabot
Bump Newtonsoft.Json from 10.0.3 to 12.0.3 in /lang/csharp
0bff653 
Bumps [Newtonsoft.Json](https://github.com/JamesNK/Newtonsoft.Json) from 10.0.3 to 12.0.3.
- [Release notes](https://github.com/JamesNK/Newtonsoft.Json/releases)
- [Commits](JamesNK/Newtonsoft.Json@10.0.3...12.0.3)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/nuget/lang/csharp/Newtonsoft.Json-12.0.3 branch from 36696ce to 0bff653 Compare March 3, 2021 00:41
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Mar 28, 2021

Superseded by #1160.

@dependabot dependabot bot closed this Mar 28, 2021
@dependabot dependabot bot deleted the dependabot/nuget/lang/csharp/Newtonsoft.Json-12.0.3 branch March 28, 2021 05:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@iemejia iemejia iemejia left review comments

@blachniet blachniet blachniet left review comments

Assignees

No one assigned

Labels

C# dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@iemejia @blachniet