Skip to content

Bump the composer group across 1 directory with 7 updates #20

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: 4.2
Choose a base branch
from
Open

Bump the composer group across 1 directory with 7 updates #20

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Nov 26, 2024

Bumps the composer group with 6 updates in the / directory:

Package From To
composer/composer 2.6.4 2.7.7
symfony/http-foundation 5.4.20 5.4.46
tecnickcom/tcpdf 6.6.2 6.7.6
twig/twig 2.15.4 3.11.2
guzzlehttp/psr7 2.4.3 2.7.0
symfony/security-http 5.4.20 5.4.47

Updates composer/composer from 2.6.4 to 2.7.7

Release notes

Sourced from composer/composer's releases.

2.7.7

This release includes fixes for issues found in a security audit by Cure53 funded by Alpha-Omega.

  • Security: Fixed command injection via malicious git branch name (GHSA-47f6-5gq3-vx9c / CVE-2024-35241)
  • Security: Fixed multiple command injections via malicious git/hg branch names (GHSA-v9qv-c7wm-wgmf / CVE-2024-35242)
  • Security: Fixed secure-http checks that could be bypassed by using malformed URL formats (fa3b9582c)
  • Security: Fixed Filesystem::isLocalPath including windows-specific checks on linux (3c37a67c)
  • Security: Fixed perforce argument escaping (3773f775)
  • Security: Fixed handling of zip bombs when extracting archives (de5f7e32)
  • Security: Fixed Windows command parameter escaping to prevent abuse of unicode characters with best fit encoding conversion, reported by Splitline Huang (3130a7455, 04a63b324)
  • Fixed PSR violations for classes not matching the namespace of a rule being hidden, this may lead to new violations being shown (#11957)
  • Fixed UX when a plugin is still in vendor dir but is not required nor allowed anymore after changing branches (#12000)
  • Fixed new platform requirements from composer.json not being checked if the lock file is outdated (#12001)
  • Fixed ability for config command to remove autoload keys (#11967)
  • Fixed empty type support in init command (#11999)
  • Fixed git clone errors when safe.bareRepository is set to strict in the git config (#11969)
  • Fixed regression showing network errors on PHP <8.1 (#11974)
  • Fixed some color bleed from a few warnings (#11972)

Full Changelog: composer/composer@2.7.6...2.7.7

2.7.6

  • Fixed regression when script handlers add an autoloader which uses a private callback (#11960)

2.7.5

  • Added uninstall alias to remove command (#11951)
  • Added workaround for broken curl versions 8.7.0/8.7.1 causing transport exceptions (#11913)
  • Fixed root usage warnings showing up within Podman containers (#11946)
  • Fixed config command not handling objects correctly in some conditions (#11945)
  • Fixed binary proxies not containing the correct path if the project dir is a symlink (#11947)
  • Fixed Composer autoloader being overruled by project autoloaders when they are loaded by event handlers (scripts/plugins) (#11955)
  • Fixed TransportException (http failures) not having a distinct exit code, should now exit with 100 as code (#11954)

2.7.4

  • Fixed regression (Call to undefined method ProxyManager::needsTransitionWarning()) with projects requiring composer/composer in an pre-2.7.3 version (#11943, #11940)

As a side-note, requiring composer/composer is frowned upon and should really only be done in circumstances where it is absolutely necessary, and ideally you should talk to us first to see if we can't help avoid it or help by extracting some code in a smaller library.

2.7.3

  • BC Warning: Fixed https_proxy env var falling back to http_proxy's value, this is still in place but with a warning for now, and https_proxy can now be set empty to remove the fallback. Composer 2.8.0 will remove the fallback so make sure you heed the warnings (#11915)
  • Fixed show and outdated commands to remove leading v in e.g. v1.2.3 when showing lists of packages (#11925)
  • Fixed audit command not showing any id when no CVE is present, the advisory ID is now shown (#11892)
  • Fixed the warning about a missing default version showing for packages with project type as those are typically not versioned and do not have cyclic dependencies (#11885)
  • Fixed PHP 8.4 deprecation warnings
  • Fixed clear-cache command to respect the config.cache-dir setting from the local composer.json (#11921)
  • Fixed status command not handling failed download/install promises correctly (#11889)
  • Added support for buy_me_a_coffee in GitHub funding files (#11902)
  • Added hg support for SSH urls (#11878)
  • Fixed some env vars with an integer value causing a crash (#11908)
  • Fixed context data not being output when using IOInterface as a PSR-3 logger (#11882)

... (truncated)

Changelog

Sourced from composer/composer's changelog.

[2.7.7] 2024-06-10

  • Security: Fixed command injection via malicious git branch name (GHSA-47f6-5gq3-vx9c / CVE-2024-35241)
  • Security: Fixed multiple command injections via malicious git/hg branch names (GHSA-v9qv-c7wm-wgmf / CVE-2024-35242)
  • Security: Fixed secure-http checks that could be bypassed by using malformed URL formats (fa3b9582c)
  • Security: Fixed Filesystem::isLocalPath including windows-specific checks on linux (3c37a67c)
  • Security: Fixed perforce argument escaping (3773f775)
  • Security: Fixed handling of zip bombs when extracting archives (de5f7e32)
  • Security: Fixed Windows command parameter escaping to prevent abuse of unicode characters with best fit encoding conversion (3130a7455, 04a63b324)
  • Fixed PSR violations for classes not matching the namespace of a rule being hidden, this may lead to new violations being shown (#11957)
  • Fixed UX when a plugin is still in vendor dir but is not required nor allowed anymore after changing branches (#12000)
  • Fixed new platform requirements from composer.json not being checked if the lock file is outdated (#12001)
  • Fixed ability for config command to remove autoload keys (#11967)
  • Fixed empty type support in init command (#11999)
  • Fixed git clone errors when safe.bareRepository is set to strict in the git config (#11969)
  • Fixed regression showing network errors on PHP <8.1 (#11974)
  • Fixed some color bleed from a few warnings (#11972)

[2.7.6] 2024-05-04

  • Fixed regression when script handlers add an autoloader which uses a private callback (#11960)

[2.7.5] 2024-05-03

  • Added uninstall alias to remove command (#11951)
  • Added workaround for broken curl versions 8.7.0/8.7.1 causing transport exceptions (#11913)
  • Fixed root usage warnings showing up within Podman containers (#11946)
  • Fixed config command not handling objects correctly in some conditions (#11945)
  • Fixed binary proxies not containing the correct path if the project dir is a symlink (#11947)
  • Fixed Composer autoloader being overruled by project autoloaders when they are loaded by event handlers (scripts/plugins) (#11955)
  • Fixed TransportException (http failures) not having a distinct exit code, should now exit with 100 as code (#11954)

[2.7.4] 2024-04-22

  • Fixed regression (Call to undefined method ProxyManager::needsTransitionWarning()) with projects requiring composer/composer in an pre-2.7.3 version (#11943, #11940)

[2.7.3] 2024-04-19

  • BC Warning: Fixed https_proxy env var falling back to http_proxy's value, this is still in place but with a warning for now, and https_proxy can now be set empty to remove the fallback. Composer 2.8.0 will remove the fallback so make sure you heed the warnings (#11915)
  • Fixed show and outdated commands to remove leading v in e.g. v1.2.3 when showing lists of packages (#11925)
  • Fixed audit command not showing any id when no CVE is present, the advisory ID is now shown (#11892)
  • Fixed the warning about a missing default version showing for packages with project type as those are typically not versioned and do not have cyclic dependencies (#11885)
  • Fixed PHP 8.4 deprecation warnings
  • Fixed clear-cache command to respect the config.cache-dir setting from the local composer.json (#11921)
  • Fixed status command not handling failed download/install promises correctly (#11889)
  • Added support for buy_me_a_coffee in GitHub funding files (#11902)
  • Added hg support for SSH urls (#11878)
  • Fixed some env vars with an integer value causing a crash (#11908)
  • Fixed context data not being output when using IOInterface as a PSR-3 logger (#11882)

... (truncated)

Commits

Updates symfony/http-foundation from 5.4.20 to 5.4.46

Release notes

Sourced from symfony/http-foundation's releases.

v5.4.46

Changelog (symfony/http-foundation@v5.4.45...v5.4.46)

v5.4.45

Changelog (symfony/http-foundation@v5.4.44...v5.4.45)

v5.4.44

Changelog (symfony/http-foundation@v5.4.43...v5.4.44)

v5.4.42

Changelog (symfony/http-foundation@v5.4.41...v5.4.42)

v5.4.40

Changelog (symfony/http-foundation@v5.4.39...v5.4.40)

v5.4.39

Changelog (symfony/http-foundation@v5.4.38...v5.4.39)

v5.4.38

Changelog (symfony/http-foundation@v5.4.37...v5.4.38)

  • no significant changes

v5.4.35

Changelog (symfony/http-foundation@v5.4.34...v5.4.35)

  • bug symfony/symfony#53432 [HttpFoundation] Request without content-type or content-length header should result in null values, not empty strings (@​priyadi)

v5.4.34

Changelog (symfony/http-foundation@v5.4.33...v5.4.34)

  • no significant changes

v5.4.32

Changelog (symfony/http-foundation@v5.4.31...v5.4.32)

... (truncated)

Commits
  • 168b77c security #cve-2024-50345 [HttpFoundation] Reject URIs that contain invalid ch...
  • 32310ff [HttpFoundation] Reject URIs that contain invalid characters
  • 38bd9bc [HttpFoundation] Remove invalid HTTP method from exception message
  • 3f38426 Ensure compatibility with mongodb v2
  • 35f7b4c session names must not be empty
  • e641edd ensure session storages are opened in tests before destroying them
  • a5509aa Add PR template and auto-close PR on subtree split repositories
  • ae0d217 move setting deprecation session options into a legacy group test
  • a414c5d bug #58181 [HttpFoundation] Update links for X-Accel-Redirect and fail prop...
  • b61630e Work around parse_url() bug
  • Additional commits viewable in compare view

Updates symfony/process from 5.4.28 to 5.4.47

Release notes

Sourced from symfony/process's releases.

v5.4.47

Changelog (symfony/process@v5.4.46...v5.4.47)

  • no significant changes

v5.4.46

Changelog (symfony/process@v5.4.45...v5.4.46)

v5.4.45

Changelog (symfony/process@v5.4.44...v5.4.45)

  • no significant changes

v5.4.44

Changelog (symfony/process@v5.4.43...v5.4.44)

v5.4.40

Changelog (symfony/process@v5.4.39...v5.4.40)

  • no significant changes

v5.4.39

Changelog (symfony/process@v5.4.38...v5.4.39)

  • no significant changes

v5.4.36

Changelog (symfony/process@v5.4.35...v5.4.36)

v5.4.35

Changelog (symfony/process@v5.4.34...v5.4.35)

v5.4.34

Changelog (symfony/process@v5.4.33...v5.4.34)

Commits
  • 5d1662f normalize paths to avoid failures if a path is referenced by different names
  • 0190687 [Process] Fix test
  • ee75984 security #cve-2024-51736 [Process] Use %PATH% before %CD% to load the shell o...
  • 05c2ccc [Process] Use %PATH% before %CD% to load the shell on Windows
  • d94dda5 [Process] Fix escaping /X arguments on Windows
  • 72baf6b fix the constant being used
  • 81e1a0c fix the path separator being used
  • d67303e minor #58747 [Process] fix the directory separator being used (xabbuh)
  • 5cdd400 minor #58746 [Process] Improve test cleanup by unlinking in a finally block...
  • 7be8366 fix the directory separator being used
  • Additional commits viewable in compare view

Updates tecnickcom/tcpdf from 6.6.2 to 6.7.6

Changelog

Sourced from tecnickcom/tcpdf's changelog.

6.7.6 (2024-10-06)

  • Forbid access to parent folder in HTML images.

6.7.5 (2024-04-20)

  • Update GitHub actions
  • fix: CSV-2024-22640 (#712)

6.7.4 (2024-03-24)

  • Upgrade tcpdf tag encryption algorithm.
  • Fix regression issue #699.
  • Fix security issue.
  • [BREAKING CHANGE] The tcpdf HTML tag syntax has changed, see example_049.php.
  • New K_ALLOWED_TCPDF_TAGS configuration constant to set the allowed methods for the tcdpf HTML tag.
  • Raised minimum PHP version to PHP 5.5.0.

6.6.5 (2023-09-02)

  • Fix corrupted file.
  • Fix GitHub automation tests.
  • Fix SPDX license ID (#591)
  • Fix warning "array offset on value of type null" (#620)
  • Improve the README about the status of this library (#589)
  • Fix deprecation warning with PHP 8.1 (#614)
  • Fixes for PHP 8.2 in tcpdf_fonts.php (#632)
  • Fix some php 8+ edge cases (#630)
  • Fix composite glyph output (#581)
  • Fix "access array offset on value of type bool" with PDF/A (#583)
  • Fix non-numeric value warning (#627)
  • Fix issues with S25 barcode (#611)
  • Fix return type annotations (#613)
  • Fix some inconsistencies in type hints (#598)
Commits

Updates twig/twig from 2.15.4 to 3.11.2

Changelog

Sourced from twig/twig's changelog.

3.11.2 (2024-11-06)

  • [BC BREAK] Fix a security issue in the sandbox mode allowing an attacker to call attributes on Array-like objects They are now checked via the property policy
  • Fix a security issue in the sandbox mode allowing an attacker to be able to call toString() under some circumstances on an object even if the __toString() method is not allowed by the security policy

3.11.1 (2024-09-10)

  • Fix a security issue when an included sandboxed template has been loaded before without the sandbox context

3.11.0 (2024-08-08)

  • Deprecate OptimizerNodeVisitor::OPTIMIZE_RAW_FILTER
  • Add Twig\Cache\ChainCache and Twig\Cache\ReadOnlyFilesystemCache
  • Add the possibility to deprecate attributes and nodes on Node
  • Add the possibility to add a package and a version to the deprecated tag
  • Add the possibility to add a package for filter/function/test deprecations
  • Mark ConstantExpression as being @final
  • Add the find filter
  • Fix optimizer mode validation in OptimizerNodeVisitor
  • Add the possibility to yield from a generator in PrintNode
  • Add the shuffle filter
  • Add the singular and plural filters in StringExtension
  • Deprecate the second argument of Twig\Node\Expression\CallExpression::compileArguments()
  • Deprecate Twig\ExpressionParser\parseHashExpression() in favor of Twig\ExpressionParser::parseMappingExpression()
  • Deprecate Twig\ExpressionParser\parseArrayExpression() in favor of Twig\ExpressionParser::parseSequenceExpression()
  • Add sequence and mapping tests
  • Deprecate Twig\Node\Expression\NameExpression::isSimple() and Twig\Node\Expression\NameExpression::isSpecial()

3.10.3 (2024-05-16)

  • Fix missing ; in generated code

3.10.2 (2024-05-14)

  • Fix support for the deprecated escaper signature

3.10.1 (2024-05-12)

  • Fix BC break on escaper extension
  • Fix constant return type

3.10.0 (2024-05-11)

  • Make CoreExtension::formatDate, CoreExtension::convertDate, and CoreExtension::formatNumber part of the public API

... (truncated)

Commits
  • 5b580ec Fix code
  • 94612e7 Prepare the 3.11.2 release
  • 8b52782 Update CHANGELOG
  • ec39a9d Sandbox ArrayAccess and do sandbox checks before isset() checks
  • cafc608 Fix sandbox handling for __toString()
  • ff063af Prepare the 3.11.1 release
  • 41103dc Fix a security issue when an included sandboxed template has been loaded befo...
  • e80fb8e Prepare the 3.11.0 release
  • fe32121 Update CHANGELOG
  • 0d524d3 feature #4182 Add the possibility to deprecate attributes and nodes on Node (...
  • Additional commits viewable in compare view

Updates guzzlehttp/psr7 from 2.4.3 to 2.7.0

Release notes

Sourced from guzzlehttp/psr7's releases.

2.7.0

Added

  • Add Utils::redactUserInfo() method
  • Add ability to encode bools as ints in Query::build

See also the change log for changes.

2.6.3

Fixed

  • Make StreamWrapper::stream_stat() return false if inner stream's size is null

Changed

  • PHP 8.4 support

See also the change log for changes.

2.6.2

Fixed

  • Fixed another issue with the fact that PHP transforms numeric strings in array keys to ints

Changed

  • Updated links in docs to their canonical versions
  • Replaced call_user_func* with native calls

See also the change log for changes.

2.6.1

See change log for changes.

2.6.0

See change log for changes.

2.5.1

See change log for changes.

2.5.0

See change log for changes.

2.4.5

... (truncated)

Changelog

Sourced from guzzlehttp/psr7's changelog.

2.7.0 - 2024-07-18

Added

  • Add Utils::redactUserInfo() method
  • Add ability to encode bools as ints in Query::build

2.6.3 - 2024-07-18

Fixed

  • Make StreamWrapper::stream_stat() return false if inner stream's size is null

Changed

  • PHP 8.4 support

2.6.2 - 2023-12-03

Fixed

  • Fixed another issue with the fact that PHP transforms numeric strings in array keys to ints

Changed

  • Updated links in docs to their canonical versions
  • Replaced call_user_func* with native calls

2.6.1 - 2023-08-27

Fixed

  • Properly handle the fact that PHP transforms numeric strings in array keys to ints

2.6.0 - 2023-08-03

Changed

  • Updated the mime type map to add some new entries, fix a couple of invalid entries, and remove an invalid entry
  • Fallback to application/octet-stream if we are unable to guess the content type for a multipart file upload

2.5.1 - 2023-08-03

Fixed

  • Corrected mime type for .acc files to audio/aac

Changed

  • PHP 8.3 support

... (truncated)

Commits

Updates symfony/security-http from 5.4.20 to 5.4.47

Release notes

Sourced from symfony/security-http's releases.

v5.4.47

Changelog (symfony/security-http@v5.4.46...v5.4.47)

v5.4.46

Changelog (symfony/security-http@v5.4.45...v5.4.46)

v5.4.45

Changelog (symfony/security-http@v5.4.44...v5.4.45)

  • no significant changes

v5.4.44

Changelog (symfony/security-http@v5.4.43...v5.4.44)

v5.4.43

Changelog (symfony/security-http@v5.4.42...v5.4.43)

v5.4.41

Changelog (symfony/security-http@v5.4.40...v5.4.41)

v5.4.40

Changelog (symfony/security-http@v5.4.39...v5.4.40)

  • no significant changes

v5.4.39

Changelog (symfony/security-http@v5.4.38...v5.4.39)

v5.4.38

Changelog (symfony/security-http@v5.4.37...v5.4.38)

  • no significant changes

v5.4.36

Changelog (symfony/security-http@v5.4.35...v5.4.36)

... (truncated)

Commits
  • cde02b0 [security-http] Check owner of persisted remember-me cookie
  • 7152f0e [Security] Store original token in token storage when implicitly exiting impe...
  • 8a4986d Add PR template and auto-close PR on subtree split repositories
  • c0f8159 Work around parse_url() bug
  • dc6de50 Revert stateless check
  • 14d271e [HttpKernel][Security] Fix accessing session for stateless request
  • 7194820 Revert "minor #54653 Auto-close PRs on subtree-splits (nicolas-grekas)"
  • 1957999 minor #54785 Remove calls to TestCase::iniSet() and calls to deprecated met...
  • 49c9c6d Remove calls to getMockForAbstractClass()
  • 31d24e4 Remove calls to TestCase::iniSet() and calls to deprecated methods of `Mock...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump the composer group across 1 directory with 7 updates
d150a4c 
Bumps the composer group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [composer/composer](https://github.com/composer/composer) | `2.6.4` | `2.7.7` |
| [symfony/http-foundation](https://github.com/symfony/http-foundation) | `5.4.20` | `5.4.46` |
| [tecnickcom/tcpdf](https://github.com/tecnickcom/TCPDF) | `6.6.2` | `6.7.6` |
| [twig/twig](https://github.com/twigphp/Twig) | `2.15.4` | `3.11.2` |
| [guzzlehttp/psr7](https://github.com/guzzle/psr7) | `2.4.3` | `2.7.0` |
| [symfony/security-http](https://github.com/symfony/security-http) | `5.4.20` | `5.4.47` |



Updates `composer/composer` from 2.6.4 to 2.7.7
- [Release notes](https://github.com/composer/composer/releases)
- [Changelog](https://github.com/composer/composer/blob/main/CHANGELOG.md)
- [Commits](composer/composer@2.6.4...2.7.7)

Updates `symfony/http-foundation` from 5.4.20 to 5.4.46
- [Release notes](https://github.com/symfony/http-foundation/releases)
- [Changelog](https://github.com/symfony/http-foundation/blob/7.1/CHANGELOG.md)
- [Commits](symfony/http-foundation@v5.4.20...v5.4.46)

Updates `symfony/process` from 5.4.28 to 5.4.47
- [Release notes](https://github.com/symfony/process/releases)
- [Changelog](https://github.com/symfony/process/blob/7.1/CHANGELOG.md)
- [Commits](symfony/process@v5.4.28...v5.4.47)

Updates `tecnickcom/tcpdf` from 6.6.2 to 6.7.6
- [Changelog](https://github.com/tecnickcom/TCPDF/blob/main/CHANGELOG.TXT)
- [Commits](tecnickcom/TCPDF@6.6.2...6.7.6)

Updates `twig/twig` from 2.15.4 to 3.11.2
- [Changelog](https://github.com/twigphp/Twig/blob/3.x/CHANGELOG)
- [Commits](twigphp/Twig@v2.15.4...v3.11.2)

Updates `guzzlehttp/psr7` from 2.4.3 to 2.7.0
- [Release notes](https://github.com/guzzle/psr7/releases)
- [Changelog](https://github.com/guzzle/psr7/blob/2.7/CHANGELOG.md)
- [Commits](guzzle/psr7@2.4.3...2.7.0)

Updates `symfony/security-http` from 5.4.20 to 5.4.47
- [Release notes](https://github.com/symfony/security-http/releases)
- [Changelog](https://github.com/symfony/security-http/blob/7.1/CHANGELOG.md)
- [Commits](symfony/security-http@v5.4.20...v5.4.47)

---
updated-dependencies:
- dependency-name: composer/composer
  dependency-type: direct:production
  dependency-group: composer
- dependency-name: symfony/http-foundation
  dependency-type: direct:production
  dependency-group: composer
- dependency-name: symfony/process
  dependency-type: direct:production
  dependency-group: composer
- dependency-name: tecnickcom/tcpdf
  dependency-type: direct:production
  dependency-group: composer
- dependency-name: twig/twig
  dependency-type: direct:production
  dependency-group: composer
- dependency-name: guzzlehttp/psr7
  dependency-type: indirect
  dependency-group: composer
- dependency-name: symfony/security-http
  dependency-type: indirect
  dependency-group: composer
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Nov 26, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant