1
0
Fork 0
Commit Graph

9016 Commits (083b73515d1d72bc61c6374440b3f8a37531f8cf)

Author SHA1 Message Date
Jordi Boggiano 083b73515d
Merge pull request from GHSA-h5h8-pc6h-jvvx
* Fix external process calls to avoid user input being able to pass extra parameters

* Tweak some fixes
2021-04-27 13:00:40 +02:00
Jordi Boggiano 4dc293b289
Update changelog 2021-04-01 09:16:28 +02:00
Jordi Boggiano 96acad1e45
Update github token pattern to match their latest updates 2021-04-01 09:13:32 +02:00
Jordi Boggiano 54889ca109
Document GH token usage and also make sure we redact them in Process debug output, refs #9757 2021-03-09 21:37:43 +01:00
Ayesh Karunaratne dc83ba93f3
Update GitHub token pattern
GitHub is updating the format of auth tokens from `a-z0-9` to `A-Za-z0-9` ([notice](https://github.blog/changelog/2021-03-04-authentication-token-format-updates/)).
I'm not sure why `.` is allowed, but I dare not to remove it. In this PR, the token validation regex is updated to allow `A-Za-z0-9` instead of the current all lower-case `a-z` and disallowed `_`.
2021-03-09 17:17:35 +01:00
Jordi Boggiano 06003f4da6
Update release step to use php8 as it produces slightly different output wrt white-space, fixes #9746 2021-03-09 15:27:35 +01:00
Jordi Boggiano 812207c823
Merge pull request #9695 from Seldaek/avoid-invalid-dir
Fix processes silently ignoring the CWD when it does not exist
2021-02-11 13:04:26 +01:00
Jordi Boggiano abcf9e993b
Fix processes silently ignoring the CWD when it does not exist, refs #9694 2021-02-11 12:57:01 +01:00
Jordi Boggiano 4d2ae78703
Update changelog 2021-01-27 15:40:59 +01:00
Jordi Boggiano 37c5e9961c
Merge remote-tracking branch 'nicolas-grekas/path-version' into 1.10 2021-01-27 15:20:38 +01:00
Jordi Boggiano 92313447d6
Filter out exclude-from-classmap rules to avoid generating very long regexes, fixes #9487 2021-01-27 15:10:32 +01:00
Jordi Boggiano bab210777e
Update deps 2021-01-27 15:01:26 +01:00
Nicolas Grekas 725b33ee5a Handle "versions" option in PathRepository, remove support for "branch-version" 2021-01-27 14:28:26 +01:00
Nicolas Grekas 079e501ac8 Revert "Merge pull request #9273 from nicolas-grekas/dev-version"
This reverts commit d2d606ced2, reversing
changes made to 4a8dbcd145.
2021-01-27 14:03:44 +01:00
Jordi Boggiano 2cb9630320
Fix $_SERVER var not being updated when using putenv, refs b80038804f and fixes #9372 2021-01-26 15:54:21 +01:00
Jordi Boggiano 3245a7cca2
Update changelog 2020-12-04 09:07:14 +01:00
Jordi Boggiano f25271ee22
Add missing file to v1 phar 2020-12-04 09:05:58 +01:00
Jordi Boggiano 3287379483
Update changelog 2020-12-03 17:16:14 +01:00
Jordi Boggiano 8b71199443
Update deps 2020-12-03 17:15:50 +01:00
Jordi Boggiano 5a826ca14f
Merge pull request #9537 from villfa/fix/binaries
Fix error with bin config in PHP8
2020-12-03 16:42:50 +01:00
Fabien Villepinte 4e8ca92b6f Fix error with binaries in PHP8 2020-12-02 13:15:16 +00:00
Jordi Boggiano b21ee81c99
Update lock file 2020-11-27 21:31:08 +01:00
Jordi Boggiano 2754910dff
Allow php8 usage with Composer 1, fixes #9523 2020-11-27 21:20:38 +01:00
Jordi Boggiano 444b91a3ce
Add docs, refs #9422 2020-11-05 16:37:51 +01:00
Jordi Boggiano f303419f35
Update changelog 2020-10-30 22:31:38 +01:00
Marco Sirabella 7f936d7dbc
Ignore failures on preg_match for user supplied regex
Fixes #7440

See: https://stackoverflow.com/a/12941133/6381767
2020-10-30 17:56:18 +01:00
Jordi Boggiano 78797df5f8
Fix bitbucket handling, fixes #9369 2020-10-30 17:28:30 +01:00
Jordi Boggiano 04e5d725f4
Add docs 2020-10-27 20:53:54 +01:00
Jordi Boggiano 8925b4f596
Attempt fixing handling of root aliases when composer 1 reads composer 2 lock files, fixes #9337 2020-10-25 12:45:33 +01:00
Jordi Boggiano 6f79163a2a
Update changelog 2020-10-24 09:55:52 +02:00
Jordi Boggiano 25496c199d
Update link to composer 2 release notes 2020-10-24 09:43:02 +02:00
Jordi Boggiano 28c7e38411
Merge remote-tracking branch 'stof/fix_why_not' into 1.10 2020-10-24 09:39:09 +02:00
Jordi Boggiano 11e652061e
Merge pull request #9327 from naderman/backport-validate-provide-replace-req
Validate: Warn about providing or replacing packages you require
2020-10-24 09:32:49 +02:00
Jordi Boggiano 8883c1eb15
Merge pull request #9326 from naderman/docs-remove-simple-easy
Docs: Remove unnecessary uses of simple/easy
2020-10-24 09:27:04 +02:00
Nils Adermann e868996bdd Validate: Warn about providing or replacing packages you require 2020-10-23 22:02:13 +02:00
Nils Adermann b12b50c679 Docs: Remove unnecessary uses of simple/easy
They only serve to make anyone reading the docs who doesn't find
something as simple or easy as stated feel bad about themselves, they
don't add anything valuable to the docs in these cases.
2020-10-23 21:52:05 +02:00
Christophe Coevoet 3dd7e829b9 Fix support of provided packages in the why-not command
The version provided by such a rule is defined by the constraint of the
rule, not by the package version.
2020-10-22 19:54:03 +02:00
Nils Adermann dacc21e54f
Merge pull request #9158 from infabo/patch-1
Fix symlink check
2020-10-22 16:04:27 +02:00
Jordi Boggiano 5f6c6216e0
Merge pull request #9321 from stof/patch-1
Enhance the doc about provide to reduce mistakes
2020-10-22 15:51:47 +02:00
Jordi Boggiano 94e7ed4f05
Merge pull request #9305 from TerryKern/patch-1
Improve readability of version info message
2020-10-22 15:32:30 +02:00
Christophe Coevoet 8e9262f129
Enhance the doc about provide to reduce mistakes 2020-10-22 15:13:01 +02:00
terry.kern 0466add822 Also use channel string for update message
https://github.com/composer/composer/pull/9305#issuecomment-714381153
2020-10-22 14:41:16 +02:00
TerryKern e68b52697b Improve readability of version info message
Instead of:

> You are already using composer version 1.10.15 (1 channel).

it shows:

> You are already using composer version 1.10.15 (1.x channel).
2020-10-22 11:54:59 +02:00
Jordi Boggiano 7fda8433b1
Update schema to use anyOf instead of oneOf, fixes #9295 2020-10-16 11:27:59 +02:00
Ingo Fabbri 750172dc4c
Fix symlink check
Given you have a symlink in one of your path repositories and mirroring-strategy enabled.

```bash
lrwxrwxrwx 1 inf inf    8 27. Aug 17:41 Create.html -> New.html
-rw-r--r-- 1 inf inf  750 27. Aug 17:24 Edit.html
-rw-r--r-- 1 inf inf    0 27. Aug 17:24 List.html
-rw-r--r-- 1 inf inf 5064 27. Aug 17:24 New.html
-rw-r--r-- 1 inf inf  716 27. Aug 17:24 Show.html
```

`$file->getLinkTarget()` just returns a relative path in this example. It does not return an absolute normalized path.
`$sources` is always a normalized path.

`strpos` can never be `0`.

Use `$file->getRealPath()` to fix the strpos-check.
2020-10-15 14:17:53 +02:00
Jordi Boggiano 1d553a6795
Update changelog 2020-10-13 15:58:02 +02:00
Jordi Boggiano 47f69c0d3c
Merge pull request #9280 from nicolas-grekas/dev-version
Fix parsing "branch-version"
2020-10-13 15:45:25 +02:00
Nicolas Grekas 4feed8b85c Fix parsing "branch-version" 2020-10-13 15:43:12 +02:00
Jordi Boggiano fec3c6a4e9
Update changelog 2020-10-13 14:44:11 +02:00
Jordi Boggiano d2d606ced2
Merge pull request #9273 from nicolas-grekas/dev-version
Add support for "extra.branch-version"
2020-10-13 14:02:41 +02:00