Update jsonpickle requirement from >=3.0,<4.1 to >=3.0,<4.2 #248

dependabot · 2025-05-22T04:43:13Z

Updates the requirements on jsonpickle to permit the latest version.

Changelog

v4.1.0

* Deprecation warnings were added to certain simple functions in ``jsonpickle/util.py``.
  These functions will be removed in 5.0.0 to ease the transition into typing everything.
* The ``test_multindex_dataframe_roundtrip`` test in the pandas extension had been failing
  on 32-bit architectures in Debian's test suite. This has been resolved. (+560)

v4.0.5

* ``pyproject.toml`` was updated to include the ``project.license.text`` field so
  that pypi continues to list our license.

v4.0.4

* ``pyproject.toml`` was updated to avoid specifying the license file.
  This avoids breaking older setuptools versions while also avoiding
  the deprecated ``tool.setuptools.license-files`` field.
  ``setuptools`` will find our ``LICENSE`` file automatically,
  so there is no need to specify it.
  ([#558](https://github.com/jsonpickle/jsonpickle/issues/558))

v4.0.3

* Documentation warnings from ``furo`` have been fixed.
* Numpy datetime64 objects with nanosecond precision are now supported.
  (+556) ([#555](https://github.com/jsonpickle/jsonpickle/issues/555))

v4.0.2

* The unpickler is now more resilient to malformed "py/id" and "py/repr" data.
  (+546)
* The unpickler is now more resilient to invalid "py/b85" and "py/b64" data.
  (+547)
* The unpickler's support for read-only str attributes was improved.
  (+548) ([#478](https://github.com/jsonpickle/jsonpickle/issues/478))

v4.0.1

* The unpickler is now more resilient to malformed "py/reduce", "py/set",
  "py/tuple", "py/b64", "py/b85", and "py/iterator" input data. (+544) (+545)
* The test suite was updated to leverage more pytest features.
* The ``jsonpickle.compat`` module is no longer used. It is still provided
  for backwards compatibility but it may be removed in a future version.

v4.0.0

* **Breaking Change**: Python 3.7 is no longer supported.
* **Breaking Change**: Support for pre-0.7.0 ``repr``-serialized objects is no
  longer enabled by default. The ``safe`` option to ``decode()`` was changed from
  ``False`` to ``True``. Users can still pass ``safe=False`` to ``decode()`` in order

... (truncated)

Commits

124e2f3 Add changelog entry for 4.1.0
c86dd1f Fix missing import
b459c5c Fix isort and gitignore
17f649d Black formatting
59dda25 Deprecate simple functions
10ba7b9 Fix test_multindex_dataframe_roundtrip on 32-bit architectures (#560)
21e1280 Merge branch 'maint/v4'
a9061b6 jsonpickle v4.0.5
8871b0e Merge pull request #559 from cdce8p/main
9a05fcb garden: add a remote for cdce8p
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Updates the requirements on [jsonpickle](https://github.com/jsonpickle/jsonpickle) to permit the latest version. - [Release notes](https://github.com/jsonpickle/jsonpickle/releases) - [Changelog](https://github.com/jsonpickle/jsonpickle/blob/main/CHANGES.rst) - [Commits](jsonpickle/jsonpickle@v3.0.0...v4.1.0) --- updated-dependencies: - dependency-name: jsonpickle dependency-version: 4.1.0 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <support@github.com>

sonarqubecloud · 2025-05-22T04:44:03Z

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

dependabot bot added dependencies Pull requests that update a dependency file python Pull requests that update Python code labels May 22, 2025

oracle-contributor-agreement bot added the OCA Verified All contributors have signed the Oracle Contributor Agreement. label May 22, 2025

rlubke approved these changes May 22, 2025

View reviewed changes

rlubke merged commit fd78134 into main May 22, 2025
17 checks passed

rlubke deleted the dependabot/pip/jsonpickle-gte-3.0-and-lt-4.2 branch May 22, 2025 15:41

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Update jsonpickle requirement from >=3.0,<4.1 to >=3.0,<4.2 #248

Update jsonpickle requirement from >=3.0,<4.1 to >=3.0,<4.2 #248

Uh oh!

dependabot bot commented on behalf of github May 22, 2025

Uh oh!

sonarqubecloud bot commented May 22, 2025

Uh oh!

Uh oh!

Uh oh!

Update jsonpickle requirement from >=3.0,<4.1 to >=3.0,<4.2 #248

Update jsonpickle requirement from >=3.0,<4.1 to >=3.0,<4.2 #248

Uh oh!

Conversation

dependabot bot commented on behalf of github May 22, 2025

v4.1.0

v4.0.5

v4.0.4

v4.0.3

v4.0.2

v4.0.1

v4.0.0

Uh oh!

sonarqubecloud bot commented May 22, 2025

Quality Gate passed

Uh oh!

Uh oh!

Uh oh!