public-mirrors
/
composer
mirror of https://github.com/composer/composer
1
0
Fork 0
Code
12,417 Commits
3 Branches
206 Tags
52 MiB
Commit Graph

8197 Commits (b0d98b9301680be15aaf038d7aab3fd29cff8fbb)

Author SHA1 Message Date
Barry vd. Heuvel b0d98b9301
Load ProxyManager before running command to fix autoload order (#11943) 2024-04-22 21:12:57 +02:00
Jordi Boggiano 9f84f0c32b
Reverting release version changes 2024-04-19 21:40:58 +02:00
Jordi Boggiano e49be96f3b
Release 2.7.3 2024-04-19 21:40:57 +02:00
Jordi Boggiano 69dc828ba7
Ensure type must be provided in init command 2024-04-19 17:27:50 +02:00
John Stevenson 70927f728e
Add FAQ about using a proxy (#11933) 2024-04-19 17:27:54 +02:00
Jordi Boggiano b0ec0f96ad
Update phpstan deps and fix a few array_filter issues 2024-04-19 17:00:50 +02:00
Jordi Boggiano 3604996464
Ensure diagnose command works even if provider-includes disappears 2024-04-19 14:20:56 +02:00
John Stevenson 41fb6146b0
Improve proxy reporting in Diagnose command (#11932) 2024-04-19 14:18:55 +02:00
John Stevenson 3cc490d4c4
Refactor proxy handling to require https_proxy (#11915) 
Composer has always allowed a single http_proxy (or CGI_HTTP_PROXY)
environment variable to be used for both HTTP and HTTPS requests. But
many other tools and libraries require scheme-specific values.

The landscape is already complicated by the use of and need for upper
and lower case values, so to bring matters inline with current practice
https_proxy is now required for HTTPS requests.

The new proxy handler incorporates a transition mechanism, which allows
http_proxy to be used for all requests when https_proxy is not set and
provides a `needsTransitionWarning` method for the main application.

Moving to scheme-specific environment variables means that a user may
set a single proxy for either HTTP or HTTPS requests. To accomodate this
situation during the transition period, an https_proxy value can be set
to an empty string which will prevent http_proxy being used for HTTPS
requests.
 2024-04-17 14:34:26 +02:00
Jordi Boggiano 92f641ac3d
Fix show command output to remove v prefixes on versions, making for more uniform output, fixes #11925 2024-04-15 13:23:25 +02:00
Jordi Boggiano 89f057e0df
Ensure we clear the locally configured cache dir instead of default one, fixes #11921 2024-04-15 11:49:10 +02:00
Fabrizio Balliano c5ff69ed58
Added support for buy_me_a_coffee (#11902) 2024-04-03 11:05:07 +02:00
Jordi Boggiano f01ec4a98f
Ensure integer env vars do not cause a crash, fixes #11908 2024-04-03 10:36:39 +02:00
Jordi Boggiano dd18a5fe55
Make methods chainable 2024-04-02 17:40:35 +02:00
Jordi Boggiano 9ced107af2
Ensure extension packages in platform repo have php-ext type set 2024-04-02 17:39:00 +02:00
Jordi Boggiano 94be5b5c14
Allow restricting allowed types as well, and allow configured ignored/allowed types in Installer class 2024-04-02 17:38:41 +02:00
Jordi Boggiano 2027d4975a
Fail status more softly unless -vvv is used, refs #11889 2024-03-21 11:16:56 +01:00
Jordi Boggiano bc157ebea9
Fix phpdoc for new php-ext schema 2024-03-20 22:44:48 +01:00
Jordi Boggiano 07fa4255d6
Add support for php extension packages (#11795) 
* Update schema
* Validate php-ext is only set for php-ext or php-ext-zend packages
* Make sure the pool builder excludes php-ext/php-ext-zend
 2024-03-20 22:04:58 +01:00
gaxweb a6947f116a
Allow for SSH URLs when using hg repository type (#11878) 2024-03-20 16:31:25 +01:00
Jordi Boggiano 75ccf6557a
Use reactphp/promise v2 compatible code 2024-03-20 12:32:54 +01:00
Jordi Boggiano 59152ad7aa
Fix phpstan errors in FileDownloader, update baseline (1642, 96) 2024-03-20 12:20:30 +01:00
Jordi Boggiano 5a1d506c77
Fix composer status command handling of failed promises, closes #11889 2024-03-20 12:20:30 +01:00
Brad Jones d00f590354
Surface the advisory ID when CVE not present. (#11892) 2024-03-19 16:24:10 +01:00
Stephan d36cd30d11
HttpDownloader: add option to prevent access to private network (#11895) 2024-03-19 16:18:59 +01:00
Jordi Boggiano 504e6c581a
Update deps and baseline (1663, 96) 2024-03-19 15:22:44 +01:00
Ayesh Karunaratne 62126e1a40
[PHP 8.4] Fix for implicit nullability deprecation (#11888) 
Fixes a issue that emits a deprecation notice on PHP 8.4.

See:
 - [RFC](https://wiki.php.net/rfc/deprecate-implicitly-nullable-types)
 - [PHP 8.4: Implicitly nullable parameter declarations deprecated](https://php.watch/versions/8.4/implicitly-marking-parameter-type-nullable-deprecated)
 2024-03-15 13:55:25 +01:00
Yanick Witschi 5a20dba768
Only show warning about default version when not "project" type (#11885) 2024-03-14 16:38:28 +01:00
Jordi Boggiano 2124f09d75
Fix context info being missing from output when using the IO classes as PSR-3 logger, fixes #11882 2024-03-11 17:23:06 +01:00
Jordi Boggiano 96f757f3a4
Reverting release version changes 2024-03-11 17:12:19 +01:00
Jordi Boggiano b826edb791
Release 2.7.2 2024-03-11 17:12:18 +01:00
Jordi Boggiano 57427e6227
Fix filesystem::copy with broken symlinks, refs #11864 2024-03-08 10:44:47 +01:00
Jordi Boggiano c5aa3dc021
Update deps, update baseline (1677, 97), fixes #11875 2024-03-08 09:03:23 +01:00
Pol Dellaiera 66acb84c12
Fix update --lock to avoid updating all metadata except dist/source urls and mirrors (#11850) 
We now update the existing package instead of reverting changes in the updated package to ensure we keep all metadata intact, fixes #11787

Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
 2024-03-05 11:32:40 +01:00
Jordi Boggiano 1dc2c93261
Fix ensureDirectoryExists not working when a broken symlink appears somewhere in the path, fixes #11864 2024-03-04 14:39:30 +01:00
Jordi Boggiano c42bb68aff
Optimize outdated --ignore to avoid fetching the latest package info for ignored packages, fixes #11863 2024-03-04 14:07:27 +01:00
Jordi Boggiano 133447cf51
Output tweak 2024-03-04 14:01:23 +01:00
Jordi Boggiano c3efff91f8
Fix plugins still being available in a few special contexts when running as non-interactive root, mainly create-project, refs #11854 2024-03-04 13:45:04 +01:00
Michael Newton c0b8086af5
Include PHP information when showing Composer version verbosely (#11866) 
Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
 2024-03-01 10:14:41 +01:00
Pol Dellaiera a0d474f75c
Add a warning message when Composer is not able to guess the root package version (#11858) 
Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
 2024-02-23 10:47:36 +01:00
Jordi Boggiano 8c61f812a4
Reverting release version changes 2024-02-09 15:26:29 +01:00
Jordi Boggiano aaf6ed5ccd
Release 2.7.1 2024-02-09 15:26:28 +01:00
Jordi Boggiano be876b47a9
Also output root plugin warning after script execution errors 2024-02-09 14:26:07 +01:00
Jordi Boggiano 690fe716c5
Output more warnings about plugins being disabled to hint that it may cause problems, fixes #11839 (#11842) 2024-02-09 11:56:25 +01:00
Jordi Boggiano 6335551cc2
Fix diagnose auditing of composer dependencies in phar files 2024-02-08 16:24:16 +01:00
Jordi Boggiano f00d3fb5ab
Reverting release version changes 2024-02-08 15:09:19 +01:00
Jordi Boggiano 96d107e2bf
Release 2.7.0 2024-02-08 15:09:19 +01:00
Jordi Boggiano 64e4eb356b
Merge pull request from GHSA-7c6p-848j-wh5h 
* Fix usage of possibly compromised installed.php/InstalledVersions.php at runtime, refs GHSA-7c6p-848j-wh5h

* Fix InstalledVersionsTest regression
 2024-02-08 14:33:59 +01:00
Jordi Boggiano 754f2868fb
Add non-zero return codes when why-not finds a reason a package is not installable, or when why finds no reason it is there, fixes #11796 2024-02-07 22:27:58 +01:00
Dezső BICZÓ 7cb92a90c8
Introduce COMPOSER_AUDIT_ABANDONED env var (#11794) 
Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
 2024-02-07 22:13:36 +01:00