dependabot[bot] opened a new pull request, #14971: URL: https://github.com/apache/dubbo/pull/14971
Bumps [com.alibaba:fastjson](https://github.com/alibaba/fastjson2) from 1.2.83_noneautotype to 2.0.0. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/alibaba/fastjson2/releases";>com.alibaba:fastjson's releases</a>.</em></p> <blockquote> <h2>fastjson 2.0.0发布</h2> <h1>1. FASTJSON 2.0介绍</h1> <p>FASTJSON 2.0是FASTJSON项目的重要升级,目标是为下一个十年提供一个高性能的JSON库,同一套API支持JSON/JSONB两种协议,JSONPath是一等公民,支持全量解析和部分解析,支持Java服务端、客户端Android、大数据场景。</p> <ul> <li>FASJTONS2代码 <a href="https://github.com/alibaba/fastjson2/releases/tag/2.0.0";>https://github.com/alibaba/fastjson2/releases/tag/2.0.0</a></li> <li>JSONB格式文档 <a href="https://github.com/alibaba/fastjson2/wiki/jsonb_format_cn";>https://github.com/alibaba/fastjson2/wiki/jsonb_format_cn</a></li> <li>FASTJSON 2性能有了很大提升,具体性能数据看这里 <a href="https://github.com/alibaba/fastjson2/wiki/fastjson_benchmark";>https://github.com/alibaba/fastjson2/wiki/fastjson_benchmark</a></li> </ul> <h1>2. 使用前准备</h1> <h2>2.1 Maven依赖</h2> <p>在fastjson 2.0中,groupId和1.x不一样,是com.alibaba.fastjson2</p> <pre lang="xml"><code><dependency> <groupId>com.alibaba.fastjson2</groupId> <artifactId>fastjson2</artifactId> <version>2.0.0</version> </dependency> </code></pre> <p><a href="https://repo1.maven.org/maven2/com/alibaba/fastjson2/fastjson2/";>https://repo1.maven.org/maven2/com/alibaba/fastjson2/fastjson2/</a></p> <h2>2.2</h2> <p>如果原来使用fastjson 1.2.x版本,可以使用兼容包,兼容包不能保证100%兼容,请仔细测试验证,发现问题请及时反馈。</p> <pre lang="xml"><code><dependency> <groupId>com.alibaba</groupId> <artifactId>fastjson</artifactId> <version>2.0.0</version> </dependency> </code></pre> <h2>2.2 常用类和方法</h2> <p>在fastjson 2.0中,package和1.x不一样,是com.alibaba.fastjson2。如果你之前用的是fastjson1,大多数情况直接更包名就即可。</p> <pre lang="java"><code>package com.alibaba.fastjson2; <p>class JSON {<br /> // 将字符串解析成JSONObject<br /> static JSONObject parseObject(String str);</p> <pre><code>// 将字符串解析成JSONArray static JSONArray parseArray(String str); // 将字符串解析成Java对象 static T parseObject(byte[] utf8Bytes, Class&lt;T&gt; objectClass); // 将Java对象输出成字符串 static String toJSONString(Object object); // 将Java对象输出成UT8编码的byte[] </code></pre> <p></tr></table><br /> </code></pre></p> </blockquote> <p>... (truncated)</p> </details> <details> <summary>Commits</summary> <ul> <li>See full diff in <a href="https://github.com/alibaba/fastjson2/commits/2.0.0";>compare view</a></li> </ul> </details> <br /> [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/apache/dubbo/network/alerts). </details> -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: notifications-unsubscr...@dubbo.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: notifications-unsubscr...@dubbo.apache.org For additional commands, e-mail: notifications-h...@dubbo.apache.org
