theoboldalex
338bc16a11
test: Covers audit of pkg with no sec advisories ( #11789 )
2024-02-07 11:40:29 +01:00
Jordi Boggiano
0c99bfc8fd
Fix root aliases causing problems when auditing locked dependencies, fixes #11771
2024-02-07 11:37:50 +01:00
Jordi Boggiano
fa040131b0
Add more details to event debug output, refs #11818
2024-02-07 11:18:06 +01:00
PrinsFrank
fd23381391
Add arguments to command call output ( #11826 )
2024-02-07 11:11:16 +01:00
Jordi Boggiano
654da6f576
Update deps, fixes #11801
2024-02-07 11:10:55 +01:00
dependabot[bot]
158df56ccc
Bump actions/cache from 3 to 4 ( #11807 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 3 to 4.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-02-07 10:10:42 +01:00
Antoine M
d0b465ffd0
chore(doc): add `_comment` documentation inside `composer.json` schema ( #11825 )
...
* Update 04-schema.md
* example
2024-02-07 10:10:05 +01:00
Kuba Werłos
7745d56c14
Do not show error that plugins have been disabled when they are already disabled ( #11803 )
2024-02-07 09:32:55 +01:00
Stephan
9a656854ad
ValidatingArrayLoader: fix link validation with missing name ( #11830 )
2024-02-06 17:18:41 +01:00
Jordi Boggiano
e88c7a8987
Add support for wildcards in outdated's --ignore arg, fixes #11831
2024-02-06 17:17:25 +01:00
Derek Stephen McLean
ebb6a82099
issue #11811 auth token links on separate lines ( #11812 )
...
* issue #11811 auth token links on separate lines
* 11811 - remove stray bracket
* 11811 : links on separte lines
2024-02-06 16:53:18 +01:00
Jordi Boggiano
ef6c224ec2
Fix require command crashing at the end if no lock file is present, fixes #11814
2024-02-06 13:46:46 +01:00
Jordi Boggiano
bff129f4f5
Update require docs, fixes #11823
2024-02-06 13:27:55 +01:00
Jordi Boggiano
0f70c0a9c9
Add detection of constraints which do not match anything in validate command, fixes #11802 ( #11829 )
2024-02-06 12:57:52 +01:00
PrinsFrank
8a69c0555b
Update plugin documentation ( #11813 )
2024-02-06 12:57:34 +01:00
Jordi Boggiano
d3aeb1357f
Merge branch '2.6'
2024-01-26 17:45:05 +01:00
Jordi Boggiano
7048ff3808
Fix automatic disabling of plugins when running non-interactive as root
2024-01-26 17:44:35 +01:00
Jordi Boggiano
f402517af5
Merge branch '2.6'
2024-01-26 17:27:48 +01:00
Jordi Boggiano
b1bd22f37c
Fix type error
2024-01-26 17:27:42 +01:00
Jordi Boggiano
2ec8feb825
Merge branch '2.6'
2024-01-26 17:11:27 +01:00
Jordi Boggiano
952256247c
Only include installed versions class when plugins and scripts are allowed, as it is not needed otherwise
2024-01-26 17:11:16 +01:00
Jordi Boggiano
4e5be9ee7d
Emit warning instead of crashing on invalid security advisory API response, fixes #11767
2024-01-12 14:20:59 +01:00
Jordi Boggiano
a29acbdd2e
Ensure repos declaring security-advisories have at least an API or a restricted set of packages to avoid too many wasteful requests
2024-01-12 13:17:05 +01:00
Jordi Boggiano
3491986ad3
Add IPv4 fallback on connection timeout, and adds COMPOSER_IPRESOLVE env var ( #11791 )
...
* Add IPv4 fallback on connection timeout, and adds COMPOSER_IPRESOLVE env var, fixes #530
* Address feedback
* Add warning in diagnose command when COMPOSER_IPRESOLVE is set
2024-01-11 17:13:54 +01:00
Jordi Boggiano
c069174ac7
Merge remote-tracking branch 'origin/2.6'
2024-01-11 16:44:46 +01:00
Jordi Boggiano
75fd2bbeb2
Ensure we respect available-package-patterns and available-packages directives when fetching security advisories, fixes #11704 ( #11773 )
2024-01-11 16:44:27 +01:00
Jordi Boggiano
55db88f51b
Add error when composer show --direct <transient-dependency> is used to show a dependency which is not direct, fixes #11728
2024-01-11 09:53:00 +01:00
Jordi Boggiano
3427bee1f2
🤦
2024-01-10 13:47:26 +01:00
Jordi Boggiano
10667db1ba
Only override ist url if it is not handled gracefully already
2024-01-10 13:42:01 +01:00
Jordi Boggiano
547a635287
Fix build
2024-01-10 13:34:56 +01:00
Jordi Boggiano
042a8c2128
Ensure dist url/type/checksum remain the same when doing lock hash updates, refs #11787
2024-01-10 13:33:49 +01:00
Jordi Boggiano
ca433076b1
Sync up docs from command, fixes #11787
2024-01-10 10:26:03 +01:00
James
5bc5c174a6
Update 01-basic-usage.md ( #11788 )
...
Changed a few clunky phrases
2024-01-09 21:21:34 +01:00
Jordi Boggiano
284821543a
Merge branch '2.6'
2024-01-08 16:10:20 +01:00
Jordi Boggiano
3ed4e16dea
Update deps
2024-01-08 16:05:46 +01:00
Sam L
44f02a5c86
Add COMPOSER_FUND=0 env var to disable calls for funding ( #11779 )
2024-01-08 15:10:49 +01:00
Jordi Boggiano
be71bf056e
Fix support for versions with 4 components in VersionSelector, fixes #11716
2024-01-08 14:56:08 +01:00
Jordi Boggiano
071fbcf347
Fix warnings incorrectly being shown when using require with upper bound ignored on platform requirements, fixes #11722 ( #11786 )
2024-01-08 14:48:24 +01:00
Jordi Boggiano
534bc20beb
Add support for combining show --self with --installed or --locked ( #11785 )
2024-01-08 14:14:44 +01:00
theoboldalex
3be0ca8467
Adds a test for invalid arg combo ( #11783 )
2024-01-08 11:03:34 +01:00
rkpiii
d00e38a038
[11744] handle missing hyphen when attempting to run self-update… ( #11775 )
...
* [11744] handle missing hyphen when attempting to run self-update command
* fix: [1744] silently fix the "self update" command
2024-01-04 17:02:34 +01:00
Quynh Anh
8246892d48
Fix PackageInterface parameter comments ( #11777 )
2024-01-04 14:49:27 +01:00
Jordi Boggiano
efe6e44883
Perform audit on Composer and its dependencies during diagnose, fixes #11216 ( #11761 )
2024-01-04 10:55:59 +01:00
Jordi Boggiano
12ed21705d
Check for non-platform requirements before warning that no deps are installed on show command, fixes #11760
2023-12-22 17:48:47 +01:00
Roberto Guido
8e62977cb5
Exposing GitLab's project metadata ( #11734 )
...
* Exposing GitLab's project metadata
* Fixed check about GitLab project's metadata initialization
2023-12-20 16:50:24 +01:00
Zoli Szabó
6198fc1053
Fix typo in composer-platform-dependencies.md ( #11757 )
2023-12-20 16:42:45 +01:00
Jordi Boggiano
53a1f32061
Add --sort-by-age to show/outdated commands, and also release date for latest package in --latest mode ( #11762 )
2023-12-20 15:37:27 +01:00
Jordi Boggiano
c8f1028ef9
Fix minor error msg issue
2023-12-20 15:16:12 +01:00
Stephan
86cd364901
Audit: add severity to plain and table output ( #11702 )
2023-12-19 19:11:50 +01:00
Jordi Boggiano
9b0f9b40a4
Show package source in very verbose updates, fixes #11733 ( #11763 )
2023-12-19 17:17:48 +01:00