Skip to content

chore(deps): update json-repair requirement from >=0.59.10 to >=0.60.1 in /nlp-service#131

Open
dependabot[bot] wants to merge 2 commits into
mainfrom
dependabot/pip/nlp-service/json-repair-gte-0.60.1
Open

chore(deps): update json-repair requirement from >=0.59.10 to >=0.60.1 in /nlp-service#131
dependabot[bot] wants to merge 2 commits into
mainfrom
dependabot/pip/nlp-service/json-repair-gte-0.60.1

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 6, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Updates the requirements on json-repair to permit the latest version.

Release notes

Sourced from json-repair's releases.

Release 0.60.1

Added

  • A potential infinite loop in schema resolution could cause an application using the library to crash if the schema was self referential

Support this project

json_repair is maintained as a side project and stays free for everyone.

If it saves you debugging time, helps you handle LLM-generated JSON, or is part of your production workflow, please consider:

Sponsorship helps justify the time spent fixing edge cases, improving performance, and keeping the library reliable.

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file python Pull requests that update python code labels Jun 6, 2026
@dependabot dependabot Bot requested review from ahjinsolo and tuirk as code owners June 6, 2026 16:57
@dependabot dependabot Bot added the python Pull requests that update python code label Jun 6, 2026
@dependabot dependabot Bot force-pushed the dependabot/pip/nlp-service/json-repair-gte-0.60.1 branch from 3d1682d to e2d0f97 Compare June 6, 2026 18:34
@tuirk
fix(security): clear Scorecard #70 transformers OSV alerts
a1b214d 
Bump torch to 2.6.0 (CPU) and exact-pin transformers to 5.9.0. The exact pin avoids Scorecard/OSV treating a vulnerable range as still affected, while staying below transformers 5.10+ imports that require torch float8 symbols 2.6 lacks. Align unit-tests-nlp CI with Dockerfile torch install. Add OSV triage script and document fix in scorecard-deferred Bucket E.

Signed-off-by: tuirk <65666288+tuirk@users.noreply.github.com>
@dependabot
chore(deps): update json-repair requirement in /nlp-service
87eab62 
Updates the requirements on [json-repair](https://github.com/mangiucugna/json_repair) to permit the latest version.
- [Release notes](https://github.com/mangiucugna/json_repair/releases)
- [Commits](mangiucugna/json_repair@v0.59.10...v0.60.1)

---
updated-dependencies:
- dependency-name: json-repair
  dependency-version: 0.60.1
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/pip/nlp-service/json-repair-gte-0.60.1 branch from e2d0f97 to 87eab62 Compare June 7, 2026 05:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tuirk tuirk Awaiting requested review from tuirk tuirk is a code owner
@ahjinsolo ahjinsolo Awaiting requested review from ahjinsolo ahjinsolo is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file python Pull requests that update python code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@tuirk