This is an implementation of RFC 6902 JSON Patch written in Java
Changes include the following - #174 #172 #171 #165
Changes includes #164 #157 #158 #159 #160 #161
Vulnerabilities fixes #156 #155 #150 #149 #148 #147 #146
Includes #140 #137
New support of - #120
Includes #117
This release includes - #102
includes PR #95 Many thanks to @holograph
Upgrade jackson version to 2.9.7 due to security vulnerabilities. details --
FasterXML jackson-databind before 2.8.11.1 and 2.9.x before 2.9.5 allows unauthenticated remote code execution because of an incomplete fix for the CVE-2017-7525 deserialization flaw. This is exploitable by sending maliciously crafted JSON input to the readValue method of the ObjectMapper, bypassing a blacklist that is ineffective if the c3p0 libraries are available in the classpath.