public-mirrors
/
composer
mirror of https://github.com/composer/composer
1
0
Fork 0
Code
9,052 Commits
3 Branches
206 Tags
52 MiB
Commit Graph

5913 Commits (355f71eaa8e660f2046ad447a9102f10336f110b)

Author SHA1 Message Date
Jordi Boggiano 355f71eaa8
Reverting release version changes 2023-09-29 10:50:23 +02:00
Jordi Boggiano f8f49191ee
Release 1.10.27 2023-09-29 10:50:23 +02:00
homersimpsons 1997bb8f36
🚨 Fix `strpos()` deprecation notice with `null` (#11310) 
Deprecation Notice: strpos(): Passing null to parameter #1 ($haystack) of type string is deprecated in composer/src/Composer/DependencyResolver/SolverProblemsException.php:80
 2023-02-10 13:25:03 +01:00
Jordi Boggiano 9c86ff9fff
Reverting release version changes 2022-04-13 16:39:57 +02:00
Jordi Boggiano 3e196135ea
Release 1.10.26 2022-04-13 16:39:56 +02:00
Stephan c33aafaa04
Merge pull request from GHSA-x7cr-6qr6-2hh6 
* GitDriver: filter branch names starting with a - character

* GitDriver: getFileContent prevent identifiers starting with a -

* HgDriver: prevent invalid identifiers and prevent file from running commands

* HgDriver: filter branches starting with a - character
 2022-04-13 16:38:19 +02:00
Jordi Boggiano d4b29e9916
Reverting release version changes 2022-01-21 10:02:15 +01:00
Jordi Boggiano 892838f844
Release 1.10.25 2022-01-21 10:02:15 +01:00
John Stevenson b262b7718b
Use copy in selfupdate to fix Windows PHP-8.1 regression (#10446) 2022-01-21 09:48:41 +01:00
Jordi Boggiano 138e315014
Reverting release version changes 2021-12-09 20:06:34 +01:00
Jordi Boggiano 6dea608377
Release 1.10.24 2021-12-09 20:06:33 +01:00
Antoine Makdessi fec5eeef8d
Add warning that Composer 1 is deprecated in install command (#9826) 2021-12-09 10:46:47 +01:00
Jordi Boggiano be273491c6 Ignore all symfony deprecations 2021-12-09 02:32:26 +01:00
David Zuelke ac9f4ac86d port from main/2.1: ignore all Return type deprecation warnings from Symfony and Composer namespaces (47cf602f9e, 2be03f0d60) 2021-12-09 02:30:25 +01:00
Jordi Boggiano ed9e9e9f9a Register ErrorHandler early to catch deprecation notices while the Application is being initialized 2021-12-09 02:22:49 +01:00
John Stevenson 906442117c Carriage returns are ignored by cmd 2021-10-13 14:54:37 +01:00
John Stevenson 8f974fe741 Improve Windows escaping 2021-10-10 16:24:49 +01:00
Jordi Boggiano ca5e2f8d50
Fix escaping issues on Windows which could lead to command injection, fixes GHSA-frqg-7g38-6gcf 2021-10-05 09:39:50 +02:00
Jordi Boggiano a02802b109
Warn 1.x users when a package is not found that it may be due to our deprecation policy 2021-06-08 21:12:49 +02:00
Jordi Boggiano 083b73515d
Merge pull request from GHSA-h5h8-pc6h-jvvx 
* Fix external process calls to avoid user input being able to pass extra parameters

* Tweak some fixes
 2021-04-27 13:00:40 +02:00
Jordi Boggiano 96acad1e45
Update github token pattern to match their latest updates 2021-04-01 09:13:32 +02:00
Jordi Boggiano 54889ca109
Document GH token usage and also make sure we redact them in Process debug output, refs #9757 2021-03-09 21:37:43 +01:00
Ayesh Karunaratne dc83ba93f3
Update GitHub token pattern 
GitHub is updating the format of auth tokens from `a-z0-9` to `A-Za-z0-9` ([notice](https://github.blog/changelog/2021-03-04-authentication-token-format-updates/)).
I'm not sure why `.` is allowed, but I dare not to remove it. In this PR, the token validation regex is updated to allow `A-Za-z0-9` instead of the current all lower-case `a-z` and disallowed `_`.
 2021-03-09 17:17:35 +01:00
Jordi Boggiano abcf9e993b
Fix processes silently ignoring the CWD when it does not exist, refs #9694 2021-02-11 12:57:01 +01:00
Jordi Boggiano 37c5e9961c
Merge remote-tracking branch 'nicolas-grekas/path-version' into 1.10 2021-01-27 15:20:38 +01:00
Jordi Boggiano 92313447d6
Filter out exclude-from-classmap rules to avoid generating very long regexes, fixes #9487 2021-01-27 15:10:32 +01:00
Nicolas Grekas 725b33ee5a Handle "versions" option in PathRepository, remove support for "branch-version" 2021-01-27 14:28:26 +01:00
Nicolas Grekas 079e501ac8 Revert "Merge pull request #9273 from nicolas-grekas/dev-version" 
This reverts commit d2d606ced2, reversing
changes made to 4a8dbcd145.
 2021-01-27 14:03:44 +01:00
Jordi Boggiano 2cb9630320
Fix $_SERVER var not being updated when using putenv, refs b80038804f and fixes #9372 2021-01-26 15:54:21 +01:00
Jordi Boggiano f25271ee22
Add missing file to v1 phar 2020-12-04 09:05:58 +01:00
Fabien Villepinte 4e8ca92b6f Fix error with binaries in PHP8 2020-12-02 13:15:16 +00:00
Jordi Boggiano 444b91a3ce
Add docs, refs #9422 2020-11-05 16:37:51 +01:00
Marco Sirabella 7f936d7dbc
Ignore failures on preg_match for user supplied regex 
Fixes #7440

See: https://stackoverflow.com/a/12941133/6381767
 2020-10-30 17:56:18 +01:00
Jordi Boggiano 78797df5f8
Fix bitbucket handling, fixes #9369 2020-10-30 17:28:30 +01:00
Jordi Boggiano 04e5d725f4
Add docs 2020-10-27 20:53:54 +01:00
Jordi Boggiano 8925b4f596
Attempt fixing handling of root aliases when composer 1 reads composer 2 lock files, fixes #9337 2020-10-25 12:45:33 +01:00
Jordi Boggiano 25496c199d
Update link to composer 2 release notes 2020-10-24 09:43:02 +02:00
Jordi Boggiano 28c7e38411
Merge remote-tracking branch 'stof/fix_why_not' into 1.10 2020-10-24 09:39:09 +02:00
Nils Adermann e868996bdd Validate: Warn about providing or replacing packages you require 2020-10-23 22:02:13 +02:00
Christophe Coevoet 3dd7e829b9 Fix support of provided packages in the why-not command 
The version provided by such a rule is defined by the constraint of the
rule, not by the package version.
 2020-10-22 19:54:03 +02:00
Nils Adermann dacc21e54f
Merge pull request #9158 from infabo/patch-1 
Fix symlink check
 2020-10-22 16:04:27 +02:00
terry.kern 0466add822 Also use channel string for update message 
https://github.com/composer/composer/pull/9305#issuecomment-714381153
 2020-10-22 14:41:16 +02:00
TerryKern e68b52697b Improve readability of version info message 
Instead of:

> You are already using composer version 1.10.15 (1 channel).

it shows:

> You are already using composer version 1.10.15 (1.x channel).
 2020-10-22 11:54:59 +02:00
Ingo Fabbri 750172dc4c
Fix symlink check 
Given you have a symlink in one of your path repositories and mirroring-strategy enabled.

```bash
lrwxrwxrwx 1 inf inf    8 27. Aug 17:41 Create.html -> New.html
-rw-r--r-- 1 inf inf  750 27. Aug 17:24 Edit.html
-rw-r--r-- 1 inf inf    0 27. Aug 17:24 List.html
-rw-r--r-- 1 inf inf 5064 27. Aug 17:24 New.html
-rw-r--r-- 1 inf inf  716 27. Aug 17:24 Show.html
```

`$file->getLinkTarget()` just returns a relative path in this example. It does not return an absolute normalized path.
`$sources` is always a normalized path.

`strpos` can never be `0`.

Use `$file->getRealPath()` to fix the strpos-check.
 2020-10-15 14:17:53 +02:00
Nicolas Grekas 4feed8b85c Fix parsing "branch-version" 2020-10-13 15:43:12 +02:00
Jordi Boggiano d2d606ced2
Merge pull request #9273 from nicolas-grekas/dev-version 
Add support for "extra.branch-version"
 2020-10-13 14:02:41 +02:00
Nicolas Grekas 893fbfcb89 Add support for "extra.branch-version" 2020-10-13 13:56:18 +02:00
Jordi Boggiano bc1cb1636d
Remove dead code, fixes #9277 2020-10-12 15:22:21 +02:00
Jordi Boggiano 6bf136489f
Ignore the COMPOSER env var when executing global scope commands, fixes #9259 2020-10-12 10:53:35 +02:00
Jordi Boggiano 159bb84fa6
Allow running the config command to disable tls even if openssl is not present, fixes #9198 2020-10-12 08:16:36 +02:00