Update json requirement from 2.13.2 to 2.14.1

[dependabot]

Updates the requirements on json to permit the latest version.

Release notes

Sourced from json's releases.

v2.14.1

What's Changed

• Fix IndexOutOfBoundsException in the JRuby extension when encoding shared strings.

Full Changelog: ruby/json@v2.14.0...v2.14.1

Changelog

Sourced from json's changelog.

2025-09-18 (2.14.1)

• Fix IndexOutOfBoundsException in the JRuby extension when encoding shared strings.

2025-09-18 (2.14.0)

• Add new allow_duplicate_key generator options. By default a warning is now emitted when a duplicated key is encountered. In json 3.0 an error will be raised.

  >> Warning[:deprecated] = true
  >> puts JSON.generate({ foo: 1, "foo" => 2 })
  (irb):2: warning: detected duplicate key "foo" in {foo: 1, "foo" => 2}.
  This will raise an error in json 3.0 unless enabled via `allow_duplicate_key: true`
  {"foo":1,"foo":2}
  >> JSON.generate({ foo: 1, "foo" => 2 }, allow_duplicate_key: false)
  detected duplicate key "foo" in {foo: 1, "foo" => 2} (JSON::GeneratorError)

• Fix JSON.generate strict: true mode to also restrict hash keys.
• Fix JSON::Coder to also invoke block for hash keys that aren't strings nor symbols.
• Fix JSON.unsafe_load usage with proc
• Fix the parser to more consistently reject invalid UTF-16 surogate pairs.
• Stop defining String.json_create, String#to_json_raw, String#to_json_raw_object when json/add isn't loaded.

2025-07-28 (2.13.2)

• Improve duplicate key warning and errors to include the key name and point to the right caller.

2025-07-24 (2.13.1)

• Fix support for older compilers without __builtin_cpu_supports.

2025-07-17 (2.13.0)

• Add new allow_duplicate_key parsing options. By default a warning is now emitted when a duplicated key is encountered. In json 3.0 an error will be raised.
• Optimize parsing further using SIMD to scan strings.

2025-05-23 (2.12.2)

• Fix compiler optimization level.

2025-05-23 (2.12.1)

• Fix a potential crash in large negative floating point number generation.
• Fix for JSON.pretty_generate to use passed state object's generate instead of state class as the required parameters aren't available.

2025-05-12 (2.12.0)

• Improve floating point generation to not use scientific notation as much.
• Include line and column in parser errors. Both in the message and as exception attributes.

... (truncated)

Commits

• 51ce76e Release 2.14.1
• a8ff0c8 Merge pull request #860 from samyron/sm/fix-swar-index-out-of-bounds-exception
• 67ebabe fix issue reading off the end of the ByteBuffer if ptr > 0
• 1d52d18 Update changelog
• 55552ca Release 2.14.0
• d334dbf Merge pull request #856 from robinetmiller/add-branch-coverage
• 08b9eb0 Only enable test coverage when running the test suite standalone
• 6bded94 Add branch test coverage when available. Force track all files to prevent imp...
• db89486 Regenerate the Java parser
• ddffd05 Merge pull request #858 from byroot/validate-surogate
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)