Fastjson 1.2.66 Released: Security Hardening and Extensive Bug Fixes
Fastjson 1.2.66, a maintenance release, introduces security hardening, an AutoType blacklist, and a series of bug fixes ranging from BeanToArray errors to Kotlin generic handling, while also adding support for Queue deserialization and enhanced date parsing.
fastjson 1.2.66 has been released as a maintenance version that fixes numerous bugs, strengthens security, and adds an AutoType blacklist.
Issues Fixed
Fix BeanToArray error in certain scenarios.
Resolve compatibility issues caused by multiple version coexistence.
Address NPE when a null List is passed to JSONArray constructor.
Fix errors with large objects in specific contexts. #2779
Correct decimal zero‑value errors when strings auto‑convert to numbers. #2838
Resolve Kotlin generic recognition problems.
Fix JSONField name not supporting private fields after enabling SupportNonPublicField. #2866
Fix nanosecond‑level Timestamp parsing exceptions. #2894
Enhance date auto‑recognition to support nanosecond precision.
Add deserialization support for Queue types.
Fix JSONField format not effective for LocalDateTime.
Resolve JSONValidator failing to detect illegal JSON in some cases. #3017
Strengthen overall security protection.
Related Links
Download: https://repo1.maven.org/maven2/com/alibaba/fastjson/1.2.66/
Documentation: https://github.com/alibaba/fastjson/wiki/常见问题
Source code: https://github.com/alibaba/fastjson/tree/1.2.66
Signed-in readers can open the original source through BestHub's protected redirect.
This article has been distilled and summarized from source material, then republished for learning and reference. If you believe it infringes your rights, please contactand we will review it promptly.
Programmer DD
A tinkering programmer and author of "Spring Cloud Microservices in Action"
How this landed with the community
Was this worth your time?
0 Comments
Thoughtful readers leave field notes, pushback, and hard-won operational detail here.