91d9d38ebc
Release 2.2.24
2024-06-10 22:51:52 +02:00
2d598484bb
Fix php5.3 syntax
2024-06-10 22:43:54 +02:00
e9560a619e
Revert issue in previous fix
2024-06-10 22:41:26 +02:00
54a3beda47
Add more characters for best fit encoding protection
2024-06-10 22:18:02 +02:00
ba4ad2408a
Fix windows parameter encoding to prevent abuse of unicode characters with best fit encoding conversion
2024-06-10 22:17:58 +02:00
47374343a1
Fix perforce arg not being escaped correctly
2024-06-10 22:17:31 +02:00
406e3f9ede
Fix Filesystem::isLocalPath including windows checks on linux
2024-06-10 22:16:15 +02:00
7a1e02d1a3
Fix secure-http check to avoid bypass using emojis
2024-06-10 22:15:34 +02:00
b93fc6ca43
Merge pull request from GHSA-47f6-5gq3-vx9c
2024-06-10 14:56:42 +02:00
fc57b93603
Merge pull request from GHSA-v9qv-c7wm-wgmf
2024-06-10 14:56:13 +02:00
668b56d0b0
Reverting release version changes
2024-02-08 15:08:54 +01:00
d1542e8963
Release 2.2.23
2024-02-08 15:08:53 +01:00
77e3982918
Merge pull request from GHSA-7c6p-848j-wh5h
...
* Fix automatic disabling of plugins when running non-interactive as root
* Fix usage of possibly compromised installed.php/InstalledVersions.php at runtime, refs GHSA-7c6p-848j-wh5h
* Fix InstalledVersionsTest regression
2024-02-08 14:33:59 +01:00
6a69018185
Reverting release version changes
2023-09-29 10:53:47 +02:00
fedc76ee3f
Release 2.2.22
2023-09-29 10:53:46 +02:00
66d3e4ba47
Fix phar build
2023-09-28 16:31:42 +02:00
b4c1be6cb6
Escape % chars in user input before passing to sprintf, fixes #11359
2023-09-28 16:18:09 +02:00
8beb64d82c
Fix github header handling to be case insensitive, fixes rate limit extraction ( #11366 )
2023-09-28 16:16:49 +02:00
44ebeb7e8f
Fix support for readonly classes as plugins, fixes #11404
2023-09-28 16:14:17 +02:00
658ab073ea
Fixed binary proxies to return whatever the original binary returns as well, fixes #11416 ( #11454 )
2023-09-28 16:08:41 +02:00
2feeb56477
Fix 'composer show --platform <package>' erroring if no composer.json is present ( #11533 )
...
Sort of related to #11046 (although this is not a regression, but didn't work before, either)
2023-09-28 16:07:45 +02:00
008c8ed11a
Fix lib-curl-openssl parsing for SecureTransport ( #11534 )
...
On macOS, if libcurl is built against SecureTransport, the platform repository will contain an invalid package name:
% composer show --platform | grep curl
ext-curl 8.2.7 The curl PHP extension
lib-curl 8.1.2 The curl library
lib-curl-(securetransport) openssl 3.1.1 curl (securetransport) openss...
lib-curl-libssh2 1.11.0 curl libssh2 version
lib-curl-zlib 1.2.11 curl zlib version
This change fixes it:
% bin/composer show --platform | grep curl
lib-curl 8.1.2 The curl library
lib-curl-libssh2 1.11.0 curl libssh2 version
lib-curl-securetransport 3.1.1 curl (securetransport) openssl ...
lib-curl-zlib 1.2.11 curl zlib version
(second column width difference comes from the Composer dev version number)
2023-09-28 16:04:05 +02:00
b29be2f56b
COMPOSER_DISABLE_NETWORK aware `diagnose` checks; SKIP output ( #11597 )
...
Make `diagnose` checks aware of COMPOSER_DISABLE_NETWORK (true) and skip
Composer network operations that would otherwise spill stack traces into
diagnostic messages and taint the result as error while the check itself
is not applicable/useful within the environment.
`COMPOSER_DISABLE_NETWORK` was released with [2.0.0-alpha1] and intro-
duced in fc03ab9bbhttps://getcomposer.org/changelog/2.0.0-alpha1 > "released 2020-06-03"
2023-09-28 15:53:56 +02:00
90f8d01614
Fix loading of root aliases on path repo packages when doing partial updates, fixes #11630 ( #11632 )
2023-09-28 15:49:28 +02:00
d12ed3d68d
Fix return type of InstalledVersions::getInstalled, fixes #11304
2023-09-28 15:48:38 +02:00
3d5f475703
Fix broken junctions leading to installation failure on Windows ( #11550 )
2023-07-21 10:58:54 +02:00
77e89fb3e4
Fix authentication issues with private bitbucket repos ( #11464 )
2023-05-23 23:06:48 +02:00
5f6f0aeaf4
Reverting release version changes
2023-02-15 13:07:41 +01:00
978198befc
Release 2.2.21
2023-02-15 13:07:40 +01:00
57b47301ed
Added optional plugin check in PluginInstaller ( #11326 )
2023-02-14 11:48:42 +01:00
5e5aaf7ada
Reverting release version changes
2023-02-10 14:11:11 +01:00
b4850827d8
Release 2.2.20
2023-02-10 14:11:10 +01:00
2a8efc7a85
Add extra.plugin-optional to auto-disable plugins in non-interactive mode ( #11316 )
2023-02-10 14:01:11 +01:00
67f5892a5d
Reverting release version changes
2023-02-04 14:54:48 +01:00
30ff21a9af
Release 2.2.19
2023-02-04 14:54:48 +01:00
fd62c6eb58
Use lowercase Github ratelimit headers to determine the ratelimit limit and reset time ( #11194 )
...
https://github.com/github/docs/pull/14912
2023-02-04 14:46:38 +01:00
bf451bd089
Allow underscores in cache keys to avoid conflicts with package names containing underscore vs dashes, fixes #11224 ( #11229 )
2023-02-04 14:45:11 +01:00
a30299b103
Improve compatibility with modern ClassLoader instances
...
Fixes #11234
2022-12-22 12:48:33 +01:00
b067e96021
Update URL masking patterns for new GitHub fine-grained PATs
...
Updates GitHub Personal Access Token regex pattern to detect new [fine-grained PATs](https://github.blog/changelog/2022-10-18-introducing-fine-grained-personal-access-tokens/ )
2022-10-25 15:08:16 +02:00
8a8c50c3a6
Fix handling of upper-bound platform req ignores to not act on conflicts ( #11037 )
...
* Fix handling of upper-bound platform req ignores to not act on conflicts, fixes #11020
* Optimization
2022-09-13 15:16:41 +02:00
44f9b8040e
Fix typo in remove command
2022-09-13 15:10:03 +02:00
07016fe326
Config - always respect COMPOSER_DISCARD_CHANGES
2022-08-30 14:06:38 +02:00
6c6e81ee80
Reverting release version changes
2022-08-20 11:33:38 +02:00
8417590766
Release 2.2.18
2022-08-20 11:33:38 +02:00
917748c996
Fix cache invalidation issue when a git tag gets created on an old ref after the cache is populated, fixes #11002 ( #11004 )
2022-08-20 09:50:39 +02:00
e823f24940
Match default choice to actual default ( #11010 )
...
The 'Y' is capital, so Yes should be the default choice and is what most people would want, but No was the default.
2022-08-20 09:45:34 +02:00
104bf0d75d
Handle 404s gracefully when loading providers in ComposerRepo, fixes #10974
2022-08-16 11:44:21 +02:00
598c1c7573
Fix phpstan error
2022-08-16 11:19:20 +02:00
6457a88aa1
Fix COMPOSER_NO_DEV to work with --update-no-dev for require/remove commands as well, refs #10995
2022-08-16 11:15:52 +02:00
1f0bd51f55
GitHubDriver: stricter URL validation to avoid issues with undefined index owner ( #10985 )
2022-08-16 11:08:03 +02:00
Jordi Boggiano