build(deps): bump com.alibaba:fastjson from 2.0.38 to 2.0.40

[dependabot]

Bumps com.alibaba:fastjson from 2.0.38 to 2.0.40.

Release notes

Sourced from com.alibaba:fastjson's releases.

fastjson 2.0.40发布

这又是一个BUG修复的版本，大家按需升级。

Issues

1. 修复2.0.39版本（不是2.0.39.android4）在android环境系列化结果不对的问题 #1744 #1755
2. 修复FastJsonHttpMessageConverter缺失contentLength header的问题 #1749
3. 修复序列化时BrowserCompatible对属性List类型无效的问题 #1742
4. 修复DuplicateKeyValueAsArray在parseObject时不起作用的问题 #1786
5. 修复配置@​JSONField(value=true)的enum序列化JSONB格式报错的问题 #1805
6. 修复反序列化不支持ZoneOffset类型得问题 #1789
7. 修复某些场景下反序列化无法识别泛型的问题 #1676
8. 修复WriteMapNullValue在序列化为JSONB格式结果不对的问题 #1757
9. 修复反序列化无法处理空字符串转uuid的问题 #1763
10. 修复自定义List类型反序列化无法识别类型的问题 #1761
11. 修复toJavaObject方法"is"开头的boolean类型属性值丢失的问题 #1754
12. 修复反序列化joda DateTime报错的问题 #1770
13. 修复FieldBased打开时序列化record报错的问题 #1798
14. 修复JSONB序列化List大对象数组越界报错的问题 #1812
15. 修复toJavaList无法识别泛型的问题 #1813
16. 修复List类型反序列化输入错误格式时不报错的问题 #1821

MAVEN依赖配置

<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2</artifactId>
    <version>2.0.40</version>
</dependency>

• android4兼容版本

<dependency>
    <groupId>com.alibaba.fastjson2</groupId>
    <artifactId>fastjson2</artifactId>
    <version>2.0.40.android4</version>
</dependency>

• 1.x 兼容版本

<dependency>
    <groupId>com.alibaba</groupId>
    <artifactId>fastjson</artifactId>
    <version>2.0.40</version>
</dependency>

• Spring 5 extension配置

</tr></table> 

... (truncated)

Commits

• 23592b0 2.0.40 release
• 9511a4f add benchmark data
• bfc86d9 fix generic field type resolve error, for issue #1676
• 69c02af fix generic field type resolve error, for issue #1676
• c9c43a6 fix deserialize List incorrect if illegal input, for issue #1821
• a1909bf add DecimalUtils test
• 6b171c6 add DecimalUtils benchmark
• 5ee457c fix jsonb serialize error, for issue #1812
• 7b4d2da add testcase
• ab65ac1 Bump com.aliyun.odps:odps-sdk-udf from 0.45.1-public to 0.45.2-public
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)