Bump org.json:json from 20251224 to 20260522

[dependabot]

Bumps org.json:json from 20251224 to 20260522.

Release notes

Sourced from org.json:json's releases.

20260522

Pull Request	Description
#1054	pre-release-20260522 prep for next release
#1053	update security.md with key data
#1046	Validate XML numeric character references before string construction
#1044	Ignore static fields in JSONObject.fromJson()
#1041	Enhance README with license clarification
#1039	Fix XML forceList parsing issue
#1038	Fix input validation in XMLTokener.unescapeEntity()
#1037	Fix ClassCastException in JSONML.toJSONArray and toJSONObject
#1029	add badge to external hosted javadoc
#1028	Refactoring: Fix sonarqube reliability issues
#1027	Save/restore default locale in test

Changelog

Sourced from org.json:json's changelog.

20260522 Publish key data, recent commits for minor fixes

Commits

• 968a592 Merge pull request #1054 from stleary/pre-release-20260522
• 3665aad pre-release-20260522 doc and build updates for release
• d749ee1 Merge pull request #1053 from stleary/update-security-md-with-key
• 6495983 update-security-md-with-key new security.md file, also fixed 1000 level jsona...
• 896ce0f Merge pull request #1046 from yuki-matsuhashi/master
• 1877069 Validate XML numeric character references before string construction
• b959027 Merge pull request #1044 from yuki-matsuhashi/1043-ignore-static
• 039f331 Add comment for empty test constructor
• 94e3400 Ignore static fields in JSONObject.fromJson()
• 6230128 Merge pull request #1041 from stleary/license-clarification
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 37%. Comparing base (1fa3040) to head (00145c6).
⚠️ Report is 3 commits behind head on master.

Additional details and impacted files

@@           Coverage Diff            @@
##             master   #2710   +/-   ##
========================================
+ Coverage        37%     37%   +1%     
  Complexity       74      74           
========================================
  Files           199     199           
  Lines         13551   13551           
  Branches       1431    1431           
========================================
+ Hits           4903    4907    +4     
+ Misses         8240    8236    -4     
  Partials        408     408           

see 2 files with indirect coverage changes

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.