1
0
Fork 0
Commit Graph

11435 Commits (658ab073ea39b9802a6aac437bd3bb25972f0480)

Author SHA1 Message Date
Jordi Boggiano 336a0d20c6
Add hint in create-project when it fails due to a missing allow-plugins in project, refs #10928 2022-07-13 14:38:54 +02:00
Jordi Boggiano 0e59fbb46e
Fix #10935 in a more generic way which fixes the issue for all Factory::create usages 2022-07-13 14:13:02 +02:00
Jordi Boggiano 37a788932d
Fix phpdoc issue 2022-07-13 13:35:03 +02:00
Jordi Boggiano 55fe12bd65
Allow disabling only local or global plugins internally to fix #10935 without side-effects 2022-07-13 13:23:27 +02:00
Jordi Boggiano a481dfce3f
Fix disk_free_space being called even when not available, fixes #10936 2022-07-13 10:35:32 +02:00
Jordi Boggiano f600ea46c7
Fix syntax error 2022-07-13 10:09:33 +02:00
Jordi Boggiano 32a7ceac2f
Improve exception message when a package cannot be added in another repo, refs #10940 2022-07-13 10:06:00 +02:00
Jordi Boggiano 75ef4903ef
Ensure plugins from CWD/vendor do not get loaded when running create-project, fixes #10935 2022-07-12 16:25:12 +02:00
Jordi Boggiano 8323e85bc8
Fix allow-plugins check to not check plugins which are anyway incompatible with the current Composer version, refs #10928 2022-07-12 13:24:21 +02:00
Jordi Boggiano dcd7f2180d
Avoid checking for allowed plugins if plugins are disabled entirely, fixes #10925 2022-07-05 22:20:33 +02:00
Jordi Boggiano 2759d8b545
Reverting release version changes 2022-07-05 16:50:29 +02:00
Jordi Boggiano 8c0ee53ff6
Release 2.2.16 2022-07-05 16:50:29 +02:00
Jordi Boggiano 8b7ea8deb6
Update changelog 2022-07-05 16:50:25 +02:00
fluffycondor 3ebd66b851
Fix deprecation notice (#10921)
Deprecation Notice: trim(): Passing null to parameter #1 ($string) of type string is deprecated in phar:///usr/bin/composer/src/Composer/Util/GitHub.php:103
2022-07-05 15:51:07 +02:00
Damien Tournoud 92e1c26c3b
Disallow plugins by throwing an exception if non-interactive to avoid half-broken runtime states (#10920)
* Disallow plugins by throwing an exception if non-interactive to avoid half-broken runtime states, fixes #10912
* Also allow BC mode for lock files older than 2.2.0 to keep plugins working there
* Allow locker to be accessed by plugin manager at init time
* Update allow-plugins docs

Co-authored-by: Damien Tournoud <damien@platform.sh>
Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
2022-07-05 15:44:30 +02:00
Jordi Boggiano f14b02b9c9
Reverting release version changes 2022-07-01 12:01:26 +02:00
Jordi Boggiano 509dcbd4f8
Release 2.2.15 2022-07-01 12:01:26 +02:00
Jordi Boggiano c3bb27960b
Fix other issues with readonly caches, refs #10906 2022-07-01 11:55:43 +02:00
Jordi Boggiano f8324e0524
Fix support for read-only caches where the filesystem is not writable (fixes #10906) 2022-07-01 11:50:26 +02:00
Jordi Boggiano 143e42269a
Update changelog 2022-07-01 11:43:12 +02:00
Jordi Boggiano ac7a6e3326
Update docs, refs #10909 2022-07-01 11:35:50 +02:00
Andreas Schempp 424547bb70
Correctly merge boolean flag of allow-plugin config (#10909) 2022-07-01 11:08:35 +02:00
Jordi Boggiano a5fdc00de1
Remove duplicate function in RootPackageInterface, fixes #10895 2022-06-23 13:39:39 +02:00
Marek Stipek 690ab5166a
Ignoring passed arguments for @putenv, closes #10846 2022-06-22 13:40:35 +02:00
Jordi Boggiano 5730c24c92
Rethrow path repo init failures with path information, closes #10845 2022-06-22 13:30:39 +02:00
Jordi Boggiano 5c68c2c86d
Fix case where branches cannot be listed in GitDownloader, fixes #10888 2022-06-22 08:50:55 +02:00
naveen 14476ec2a6
chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-06-22 08:18:22 +02:00
Chris Reed 03fbcdbf07
Fix exported path with space in binary installer proxy (#10836) 2022-06-10 21:56:11 +02:00
Jordi Boggiano ba2ce37cd9
Reverting release version changes 2022-06-06 16:32:51 +02:00
Jordi Boggiano 8c7a2d200b
Release 2.2.14 2022-06-06 16:32:50 +02:00
Jordi Boggiano 7cb994fade
Update changelog 2022-06-06 16:32:44 +02:00
Stephan Jorek fbc85dede8
allow chained proxy-binary php-inclusions (#10823)
* allow chained proxy-binary php-inclusion by skipping redundant “phpvfscomposer” stream-wrapper registration
2022-06-06 16:14:54 +02:00
Jordi Boggiano e3527ea37f
Detect broken symlinks when checking for a package's presence, fixes #6708 2022-06-06 15:22:49 +02:00
Jordi Boggiano a76a1c9fc2
Fix parsing of multi-line arrays in funding yml, fixes #10784 2022-06-06 14:49:37 +02:00
Fabien Villepinte 1e9210f7b1
Fix TypeError when a JSON file can not be read (#10818) 2022-06-04 15:20:58 +02:00
Jordi Boggiano 15f7d24e7e
Parse openssl 3 versions cleaner 2022-06-02 21:17:44 +02:00
Jordi Boggiano 3ead6c0119
Backport schema fixes for gitlab-token, fixes #10800 2022-06-01 21:32:29 +02:00
Nicolas Hedger 70a7b592e9
Fix JSON schema regex pattern (#10811) 2022-06-01 21:23:07 +02:00
Matronator 313142c6cd
Escape forward slash in `properties.name` 2022-06-01 21:06:22 +02:00
Jan Tojnar 955194f896
docs: Fix inconsist semver operator suggestion (#10810)
Using caret over tilde is better since it behaves the same as in npm:
https://jubianchi.github.io/semver-check/#/constraint/~3.0
But when this change was introduced in https://github.com/composer/composer/pull/5396,
it was not complete.
2022-05-31 13:24:38 +02:00
Jordi Boggiano 5d353716d3
Reverting release version changes 2022-05-25 21:37:26 +02:00
Jordi Boggiano de11c9819a
Release 2.2.13 2022-05-25 21:37:25 +02:00
Jordi Boggiano 86dcc7ac23
Update changelog 2022-05-25 21:36:44 +02:00
Jordi Boggiano 10d3895f18
Ensure that dotfiles can be excluded, fixes #8866 2022-05-24 22:14:17 +02:00
Jordi Boggiano 25542aca70
Update baseline 2022-05-24 21:26:37 +02:00
Jordi Boggiano 654ecc759a
Check that symlink function exists before using it in path repo, fixes #10786 2022-05-24 21:21:47 +02:00
Jordi Boggiano d131be009d
Update deps 2022-05-24 14:46:47 +02:00
Jordi Boggiano 44a52e4157
Fix backtracking in name validation regex 2022-05-24 14:32:18 +02:00
John Stevenson 2837585e47
Fix cmd splitting paths on commas (#10775) 2022-05-12 21:13:55 +02:00
Jordi Boggiano aeb204bb1d
Fix race condition where multiple http requests requiring auth end up failing, fixes #10763 2022-05-11 13:06:59 +02:00