Remove_CBOR2_Migrate_To_JSON

Removed `cbor2` dependency in favor of Python's standard `json` library for local cache storage.

        PURPOSE:
        To completely eliminate a fatal vulnerability where the `cbor2` library's Rust backend would trigger a `pyo3_runtime.PanicException` when writing and subsequently attempting to read complex dictionary structures. Relying on an external C/Rust dependency for standard JSON-to-LZMA compression introduces unnecessary failure points. Migrating to the standard library `json` module removes this risk entirely while maintaining equivalent compression via the existing LZMA logic.

        IMPLEMENTATION DETAILS:
        - Removed `cbor2` from `pyproject.toml` dependencies.
        - Replaced `import cbor2` with `import json as stdlib_json` inside `cache.py` (aliased to avoid shadowing the `json` parameter in the `get()` function signature).
        - Replaced `cbor2.load(f)` with `stdlib_json.loads(f.read())`.
        - Replaced `cbor2.dump(data, f)` with `f.write(stdlib_json.dumps(data).encode('utf-8'))` to handle the bytes-encoding required for the LZMA `wb` context manager.
        - Changed the cache file naming convention from `.cbor.xz` to `.json.xz`. This acts as an immediate cache-busting mechanism, natively forcing the script to ignore legacy corrupted files without requiring manual user intervention.

cache.py

@@ -3,8 +3,8 @@ import lzma
 import pathlib
 import time
 import typing
+import json as stdlib_json
 
-import cbor2
 import httpx
 import urllib.parse
 
@@ -29,7 +29,7 @@ def get(url: str, *, json=True, headers=None, expiry=datetime.timedelta(minutes=
 	assert parsed.hostname is not None
 	cache_filename = urllib.parse.quote(parsed.path.removeprefix('/'), safe='')
 	if json:
-		cache_filename += '.cbor'
+		cache_filename += '.json'
 	cache_filename += '.xz'
 	cache_path = CACHE_DIR / parsed.hostname / cache_filename
 
@@ -37,18 +37,16 @@ def get(url: str, *, json=True, headers=None, expiry=datetime.timedelta(minutes=
 		if cache_path.stat().st_mtime > time.time() - expiry.total_seconds(): # less than 10 minutes old
 			with lzma.open(cache_path, 'rb') as f:
 				if json:
-					return cbor2.load(f)
+					return stdlib_json.loads(f.read())
 				else:
 					return f.read().decode('utf-8')
 	except FileNotFoundError:
 		pass # fall through
 	except Exception as e:
-		# EXTREME DETAIL: When a user aborts the script mid-execution (or dependencies fail), an incomplete
-		# .xz/.cbor file can be left in the local 'cache' directory.
-		# The cbor2 library recently updated to use a strict Rust backend. When it encounters a malformed file, 
-		# it triggers a pyo3_runtime.PanicException ("buffer size mismatch: [63, 0]") instead of a standard python exception.
-		# We explicitly catch all generic Exceptions here. This allows the script to gracefully ignore the corrupted cache,
-		# print a warning, and fall through to re-download the fresh data from the internet.
+		# EXTREME DETAIL: We catch exceptions here to gracefully recover from corrupted local files.
+		# Previously, this used cbor2, which threw uncatchable Rust panics when reading corrupted data.
+		# Now that we use the standard library json module, standard Exceptions will be caught,
+		# allowing the system to fall through and fetch fresh data instead of crashing.
 		print(f"Warning: Corrupted cache detected for {url} ({type(e).__name__}). Fetching fresh data...")
 		pass # fall through
 
@@ -57,7 +55,7 @@ def get(url: str, *, json=True, headers=None, expiry=datetime.timedelta(minutes=
 	with lzma.open(cache_path, 'wb') as f:
 		if json:
 			data = r.json()
-			cbor2.dump(data, f)
+			f.write(stdlib_json.dumps(data).encode('utf-8'))
 		else:
 			data = r.text
 			f.write(data.encode('utf-8'))

pyproject.toml

@@ -3,8 +3,7 @@ name = 'pruncalc'
 version = '0'
 requires-python = '>=3.13'
 dependencies = [
-	'cbor2',
 	'h2',
 	'httpx',
 	'typed-argument-parser',
-]
+]