2759d8b545
Reverting release version changes
2022-07-05 16:50:29 +02:00
8c0ee53ff6
Release 2.2.16
2022-07-05 16:50:29 +02:00
8b7ea8deb6
Update changelog
2022-07-05 16:50:25 +02:00
fca92faed8
Fix type error
2022-07-05 16:26:46 +02:00
8304ea0695
Fix type error with null descriptions, fixes #10924
2022-07-05 16:23:53 +02:00
9a6d63f0f4
Fix build regressions
2022-07-05 16:22:29 +02:00
3764073b43
Merge branch '2.2' into 2.3
2022-07-05 16:08:35 +02:00
3ebd66b851
Fix deprecation notice ( #10921 )
...
Deprecation Notice: trim(): Passing null to parameter #1 ($string) of type string is deprecated in phar:///usr/bin/composer/src/Composer/Util/GitHub.php:103
2022-07-05 15:51:07 +02:00
92e1c26c3b
Disallow plugins by throwing an exception if non-interactive to avoid half-broken runtime states ( #10920 )
...
* Disallow plugins by throwing an exception if non-interactive to avoid half-broken runtime states, fixes #10912
* Also allow BC mode for lock files older than 2.2.0 to keep plugins working there
* Allow locker to be accessed by plugin manager at init time
* Update allow-plugins docs
Co-authored-by: Damien Tournoud <damien@platform.sh>
Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
2022-07-05 15:44:30 +02:00
c422fefda4
Merge branch '2.3'
2022-07-01 12:24:58 +02:00
1703b74e73
Add missing return types
2022-07-01 12:24:54 +02:00
99255d3d85
Build releases with 8.1
2022-07-01 12:22:11 +02:00
796d2bae08
Merge branch '2.3'
2022-07-01 12:15:30 +02:00
726669084b
Reverting release version changes
2022-07-01 12:10:47 +02:00
f69e63262d
Release 2.3.8
2022-07-01 12:10:47 +02:00
75bea6ba73
Update changelog
2022-07-01 12:09:16 +02:00
618fcb800b
Merge branch '2.2' into 2.3
2022-07-01 12:05:18 +02:00
f14b02b9c9
Reverting release version changes
2022-07-01 12:01:26 +02:00
509dcbd4f8
Release 2.2.15
2022-07-01 12:01:26 +02:00
c3bb27960b
Fix other issues with readonly caches, refs #10906
2022-07-01 11:55:43 +02:00
f8324e0524
Fix support for read-only caches where the filesystem is not writable ( fixes #10906 )
2022-07-01 11:50:26 +02:00
143e42269a
Update changelog
2022-07-01 11:43:12 +02:00
ac7a6e3326
Update docs, refs #10909
2022-07-01 11:35:50 +02:00
7adcf9f14c
Fix TypeError ( #10904 )
...
Fix string type requirement in case of NULL value:
[TypeError]
Composer\Command\InitCommand::parseAuthorString(): Argument #1 ($author) must be of type string, null given, called in phar:///composer.phar/src/Composer/Command/InitCommand.php on line 345
2022-07-01 11:33:15 +02:00
f1dd325e14
Fix TypeError ( #10904 )
...
Fix string type requirement in case of NULL value:
[TypeError]
Composer\Command\InitCommand::parseAuthorString(): Argument #1 ($author) must be of type string, null given, called in phar:///composer.phar/src/Composer/Command/InitCommand.php on line 345
2022-07-01 11:23:04 +02:00
7ab4306c78
Fix TypeError ( #10904 )
...
Fix string type requirement in case of NULL value:
[TypeError]
Composer\Command\InitCommand::parseAuthorString(): Argument #1 ($author) must be of type string, null given, called in phar:///composer.phar/src/Composer/Command/InitCommand.php on line 345
2022-07-01 11:15:29 +02:00
424547bb70
Correctly merge boolean flag of allow-plugin config ( #10909 )
2022-07-01 11:08:35 +02:00
1812862d5e
Update phpstan to latest, update baseline (1909, 103)
2022-06-30 17:07:18 +02:00
51db9e823c
Bump actions/cache from 2 to 3 ( #10902 )
...
Bumps [actions/cache](https://github.com/actions/cache ) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2022-06-30 15:17:38 +02:00
efd426f8bb
Extract some common logic for filtering away dev requirements into a RepositoryUtils
2022-06-30 15:05:34 +02:00
de9996d4c4
Output exception class when audit fails
2022-06-30 14:28:16 +02:00
137ed52966
chore: Included githubactions in the dependabot config ( #10900 )
...
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.
Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot
GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot
https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-06-28 20:32:45 +02:00
f9db69ae1f
Merge pull request #10898 from Seldaek/meta_advisories
...
Move security advisory loading to repositories
2022-06-28 20:31:03 +02:00
d880ab68cf
Allow use of --locked with depends and prohibits ( #10834 )
...
* Allow use of --locked with depends and prohibits
* Only include other repos if not --locked
* Move logic to appease PHPStan
* Load a PlatformRepository when reading lock file
2022-06-25 17:06:58 +02:00
0196690ab3
Disable automatic audit at the end of install step to keep things fast, switch --no-audit to an opt-in --audit flag
2022-06-24 16:54:30 +02:00
8c9f82dc1e
Move security advisory loading to repositories, allows others to provider them and reduces load on packagist.org for summary advisory reports
2022-06-24 16:26:57 +02:00
978037fbfa
Fix build
2022-06-24 11:12:57 +02:00
4229c2c641
Merge branch '2.3' into main
2022-06-24 11:10:07 +02:00
f7e88099af
Merge branch '2.2' into 2.3
2022-06-24 11:09:45 +02:00
6776cef441
Fix: ValidatingArrayLoader [TypeError]: strcasecmp(): Argument #1() must be of type string, int given ( #10897 )
2022-06-24 10:30:33 +02:00
ddecd5e328
Add hint to why-not that calling update with a temporary constraint can also help elucidate an issue
2022-06-23 21:16:12 +02:00
eba49147e7
Add warning when the latest version of a package cannot be auto-selected in require/init/create-project, fixes #10884 ( #10896 )
2022-06-23 14:37:04 +02:00
a5fdc00de1
Remove duplicate function in RootPackageInterface, fixes #10895
2022-06-23 13:39:39 +02:00
92ff8e5bc6
Audit command doc improvements ( #10893 )
2022-06-23 12:59:45 +02:00
658f56ff13
Fix audit command to exit with amount of advisories matched
2022-06-23 12:31:09 +02:00
e3c46cb2b2
Audit locked packages if update is called with --no-install, fixes #10894
2022-06-22 16:36:54 +02:00
611b215896
Fix PHPStan issues and a couple minor bugs in audit functionality, refs #10798
2022-06-22 15:39:51 +02:00
d93239ddd9
Add audit command to check for security issues ( #10798 )
...
Closes #10329
2022-06-22 15:15:01 +02:00
d17c724f23
Php unit dedicate assert ( #10881 )
...
Co-authored-by: Jordi Boggiano <j.boggiano@seld.be>
2022-06-22 14:20:08 +02:00
4131f7cf4c
Static lambda ( #10854 )
...
Lambdas not (indirect) referencing $this must be declared static.
2022-06-22 14:19:18 +02:00
Jordi Boggiano