other.) And inventing a new "JSON5
> but not quite" subset would be doing no one any favors.
>
> Jsonc seems to be entirely a MS-ecosystem thing; it does not have
> broad enough traction to be the "one grammar" we accept. So pure
> JSON, as specification-challe
Great work.
I feel the elephant in the room needs to addressed: JSON comments. I
haven't tested the proposed lib but I cannot see it mentioned so I'm
assuming that comments are not supported.
For better or worse, the use of jsonc (JSON with comments) is everywhere
in some ecosystems. Unsurprisi
On 23/04/2025 11.47, Alan Bateman wrote:
> On 23/04/2025 09:24, Lars Bruun-Hansen wrote:
>> :
>>
>> There is also a security angle: Spoofing file names in ZIP files
>> is a common technique. Some implementations takes cautionary
>> steps on this. For example, the
I would like to propose a strengthening of the security posture
of the ZIP file implementation.
The java.util.zip implementation is, according to the package docs,
based on the Info-ZIP specification [1] which itself states to be based
on PKWARE's appnote.txt [2]. The latter is probably considered
