Skip to content

Bump the php-prod group across 1 directory with 8 updates#544

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/composer/php-prod-6214bc2d82
Closed

Bump the php-prod group across 1 directory with 8 updates#544
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/composer/php-prod-6214bc2d82

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 2, 2025
edited
Loading

Bumps the php-prod group with 7 updates in the / directory:

Package From To
doctrine/doctrine-bundle 2.13.2 2.14.0
doctrine/doctrine-migrations-bundle 3.4.1 3.4.2
doctrine/orm 3.3.2 3.3.3
nelmio/security-bundle 3.4.2 3.5.1
ramsey/uuid 4.7.6 4.8.1
twig/extra-bundle 3.20.0 3.21.0
twig/intl-extra 3.20.0 3.21.0

Updates doctrine/doctrine-bundle from 2.13.2 to 2.14.0

Release notes

Sourced from doctrine/doctrine-bundle's releases.

2.14.0

Release Notes for 2.14.0

2.14.0

  • Total issues resolved: 0
  • Total pull requests resolved: 8
  • Total contributors: 7

Improvement

Feature

Commits
  • ca6a735 Merge branch '2.13.x' into 2.14.x
  • a91383d Ensure classes using the #[Entity] attribute are not declared as services
  • aac7562 Fix Dev dependencies stability check
  • 02376ad Bump doctrine/.github from 7.2.1 to 7.2.2 (#1873)
  • fdeecd4 Add loaded entities profiler section (#1872)
  • edb600c Rename abstract test case classes with deprecated "Test" suffix (#1870)
  • d9ea81d Remove PHPUnit "require PHP 8" (#1869)
  • a5f5613 Merge pull request #1866 from doctrine/dependabot/github_actions/doctrine/dot...
  • a622d7f Bump doctrine/.github from 5.3.0 to 7.2.1
  • ed97813 phpstan: lvl 4 -> 5 (#1864)
  • Additional commits viewable in compare view

Updates doctrine/doctrine-migrations-bundle from 3.4.1 to 3.4.2

Release notes

Sourced from doctrine/doctrine-migrations-bundle's releases.

3.4.2

Release Notes for 3.4.2

3.4.x bugfix release (patch)

3.4.2

  • Total issues resolved: 0
  • Total pull requests resolved: 5
  • Total contributors: 3

Bugfixes

Improvements

CI

Commits
  • 5a6ac71 Merge pull request #590 from tobias-93/fix-multiple-connections
  • 56f684f Merge pull request #599 from doctrine/dependabot/github_actions/doctrine/dot-...
  • be3ba36 Bump doctrine/.github from 7.2.1 to 7.2.2
  • dc4f5b5 Update whitespace in comment
  • 0d9e53d Add test for filtering multiple connections
  • af735b5 Remove default tag for schema filter, it is added for each connection dynamic...
  • 7569f07 Fix filter support for multiple connections
  • 9f27613 Bump doctrine/.github from 7.2.0 to 7.2.1 (#598)
  • 12b0af4 Merge pull request #597 from greg0ire/remove-persistence-constraint
  • ca926d7 Remove constraint on doctrine/persistence
  • Additional commits viewable in compare view

Updates doctrine/orm from 3.3.2 to 3.3.3

Release notes

Sourced from doctrine/orm's releases.

3.3.3

Release Notes for 3.3.3

3.3.x bugfix release (patch)

3.3.3

  • Total issues resolved: 0
  • Total pull requests resolved: 16
  • Total contributors: 5

Improvement

Bugfixes

Documentation

CI

This release contains the changes from https://github.com/doctrine/orm/releases/tag/2.20.3

Commits
  • 1f1891d Merge pull request #11926 from greg0ire/3.3.x
  • c9fc4d9 Merge remote-tracking branch 'origin/2.20.x' into 3.3.x
  • 17d28b5 Merge pull request #11917 from stof/lazy_ghost_postload
  • a2d510c Fix the initialization of lazy-ghost proxies with postLoad listeners
  • 0e3cff0 Update composite-primary-keys.rst (#11919)
  • 5c50ed9 Merge pull request #11924 from xabbuh/dbal-6867
  • 5a1e560 prefer primary key constraints over Index::isPrimary()
  • 78e8887 Merge pull request #11911 from xabbuh/dbal-6890
  • 5eb298b Merge pull request #11914 from xabbuh/dbal-6886
  • 5eb0255 do not use deprecated index features
  • Additional commits viewable in compare view

Updates nelmio/security-bundle from 3.4.2 to 3.5.1

Release notes

Sourced from nelmio/security-bundle's releases.

v3.5.1

What's Changed

Full Changelog: nelmio/NelmioSecurityBundle@v3.5.0...v3.5.1

v3.5.0

What's Changed

Full Changelog: nelmio/NelmioSecurityBundle@v3.4.2...v3.5.0

Commits

Updates ramsey/uuid from 4.7.6 to 4.8.1

Release notes

Sourced from ramsey/uuid's releases.

4.8.1

Fixed

  • This tagged release ensures the stable documentation build matches the current stable release.

Full Changelog: ramsey/uuid@4.8.0...4.8.1

4.8.0

Deprecated

The following will be removed in ramsey/uuid 5.0.0:

  • Ramsey\Uuid\Codec\OrderedTimeCodec is deprecated; please migrate to version 6 UUIDs.
  • Ramsey\Uuid\Codec\TimestampFirstCombCodec is deprecated; please migrate to version 7 UUIDs.
  • Ramsey\Uuid\Codec\TimestampLastCombCodec is deprecated; please use Ramsey\Uuid\Codec\StringCodec instead.
  • Ramsey\Uuid\Generator\CombGenerator is deprecated; please migrate to version 7 UUIDs.

Fixed

  • Allow brick/math version ^0.13; fixed in #589.
  • Update call to str_getcsv() to avoid deprecation notice in PHP 8.4; fixed in #590.
  • Hexadecimal is never an empty string; fixed in #593.
  • Update docblocks for Uuid::fromBytes(), Uuid::fromString(), Uuid::fromDateTime(), Uuid::fromHexadecimal(), and Uuid::fromInteger() to note that each can throw InvalidArgumentException, addressing PHPStan errors occurring at call sites; fixed in #552.
  • getVariant() for MaxUuid now correctly returns Uuid::RESERVED_FUTURE, as specified in RFC 9562, section 5.10.
  • getVariant() for NilUuid now correctly returns Uuid::RESERVED_NCS, as specified in RFC 9562, section 5.9.

New Contributors

Full Changelog: ramsey/uuid@4.7.6...4.8.0

Changelog

Sourced from ramsey/uuid's changelog.

4.8.1 - 2025-06-01

Fixed

  • This tagged release ensures the stable documentation build matches the current stable release.

4.8.0 - 2025-06-01

Deprecated

The following will be removed in ramsey/uuid 5.0.0:

  • Ramsey\Uuid\Codec\OrderedTimeCodec is deprecated; please migrate to version 6 UUIDs.
  • Ramsey\Uuid\Codec\TimestampFirstCombCodec is deprecated; please migrate to version 7 UUIDs.
  • Ramsey\Uuid\Codec\TimestampLastCombCodec is deprecated; please use Ramsey\Uuid\Codec\StringCodec instead.
  • Ramsey\Uuid\Generator\CombGenerator is deprecated; please migrate to version 7 UUIDs.

Fixed

  • Allow brick/math version ^0.13; fixed in #589.
  • Update call to str_getcsv() to avoid deprecation notice in PHP 8.4; fixed in #590.
  • Hexadecimal is never an empty string; fixed in #593.
  • Update docblocks for Uuid::fromBytes(), Uuid::fromString(), Uuid::fromDateTime(), Uuid::fromHexadecimal(), and Uuid::fromInteger() to note that each can throw InvalidArgumentException, addressing PHPStan errors occurring at call sites; fixed in #552.
  • getVariant() for MaxUuid now correctly returns Uuid::RESERVED_FUTURE, as specified in RFC 9562, section 5.10.
  • getVariant() for NilUuid now correctly returns Uuid::RESERVED_NCS, as specified in RFC 9562, section 5.9.
Commits
  • fdf4dd4 Prepare release 4.8.1
  • b366701 Update documentation with references to RFC 9562
  • 6700833 Prepare for release 4.8.0
  • a11a7e5 Lock brick/math to ^0.9 for testing and update CHANGELOG
  • db6a661 Merge branch 'derrabus-bump/math' into 4.x
  • d52de61 fix: max UUID should be variant 7, nil UUID should be variant 0
  • dbcee99 Update CHANGELOG with most recent changes
  • efc4409 Clean up docblocks, code, and note new deprecations
  • d43a9e7 chore: update copyright year
  • 4d0c09d chore: convert @​psalm-return to @​return
  • Additional commits viewable in compare view

Updates twig/extra-bundle from 3.20.0 to 3.21.0

Commits

Updates twig/intl-extra from 3.20.0 to 3.21.0

Commits

Updates twig/twig from 3.20.0 to 3.21.1

Changelog

Sourced from twig/twig's changelog.

3.21.1 (2025-05-03)

  • Fix ExtensionSet usage of BinaryOperatorExpressionParser

3.21.0 (2025-05-02)

  • Fix wrong array index
  • Deprecate Template::loadTemplate()
  • Fix testing and expression when it evaluates to an instance of Markup
  • Add ReturnPrimitiveTypeInterface (and sub-interfaces for number, boolean, string, and array)
  • Add SupportDefinedTestInterface for expression nodes supporting the defined test
  • Deprecate using the | operator in an expression with + or - without using parentheses to clarify precedence
  • Deprecate operator precedence outside of the [0, 512] range
  • Introduce expression parser classes to describe operators and operands provided by extensions instead of arrays (it comes with many deprecations that are documented in the deprecated documentation chapter)
  • Deprecate the Twig\ExpressionParser, and Twig\OperatorPrecedenceChange classes
  • Add attributes AsTwigFilter, AsTwigFunction, and AsTwigTest to ease extension development
Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Jun 2, 2025
@dependabot dependabot Bot force-pushed the dependabot/composer/php-prod-6214bc2d82 branch 2 times, most recently from f438edf to 1019a6e Compare August 21, 2025 12:46
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Sep 16, 2025

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

@dependabot
Bump the php-prod group across 1 directory with 8 updates
5201bdf 
Bumps the php-prod group with 7 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [doctrine/doctrine-bundle](https://github.com/doctrine/DoctrineBundle) | `2.13.2` | `2.14.0` |
| [doctrine/doctrine-migrations-bundle](https://github.com/doctrine/DoctrineMigrationsBundle) | `3.4.1` | `3.4.2` |
| [doctrine/orm](https://github.com/doctrine/orm) | `3.3.2` | `3.3.3` |
| [nelmio/security-bundle](https://github.com/nelmio/NelmioSecurityBundle) | `3.4.2` | `3.5.1` |
| [ramsey/uuid](https://github.com/ramsey/uuid) | `4.7.6` | `4.8.1` |
| [twig/extra-bundle](https://github.com/twigphp/twig-extra-bundle) | `3.20.0` | `3.21.0` |
| [twig/intl-extra](https://github.com/twigphp/intl-extra) | `3.20.0` | `3.21.0` |



Updates `doctrine/doctrine-bundle` from 2.13.2 to 2.14.0
- [Release notes](https://github.com/doctrine/DoctrineBundle/releases)
- [Commits](doctrine/DoctrineBundle@2.13.2...2.14.0)

Updates `doctrine/doctrine-migrations-bundle` from 3.4.1 to 3.4.2
- [Release notes](https://github.com/doctrine/DoctrineMigrationsBundle/releases)
- [Commits](doctrine/DoctrineMigrationsBundle@3.4.1...3.4.2)

Updates `doctrine/orm` from 3.3.2 to 3.3.3
- [Release notes](https://github.com/doctrine/orm/releases)
- [Commits](doctrine/orm@3.3.2...3.3.3)

Updates `nelmio/security-bundle` from 3.4.2 to 3.5.1
- [Release notes](https://github.com/nelmio/NelmioSecurityBundle/releases)
- [Changelog](https://github.com/nelmio/NelmioSecurityBundle/blob/master/CHANGELOG.md)
- [Commits](nelmio/NelmioSecurityBundle@v3.4.2...v3.5.1)

Updates `ramsey/uuid` from 4.7.6 to 4.8.1
- [Release notes](https://github.com/ramsey/uuid/releases)
- [Changelog](https://github.com/ramsey/uuid/blob/4.x/CHANGELOG.md)
- [Commits](ramsey/uuid@4.7.6...4.8.1)

Updates `twig/extra-bundle` from 3.20.0 to 3.21.0
- [Commits](twigphp/twig-extra-bundle@v3.20.0...v3.21.0)

Updates `twig/intl-extra` from 3.20.0 to 3.21.0
- [Commits](twigphp/intl-extra@v3.20.0...v3.21.0)

Updates `twig/twig` from 3.20.0 to 3.21.1
- [Changelog](https://github.com/twigphp/Twig/blob/3.x/CHANGELOG)
- [Commits](twigphp/Twig@v3.20.0...v3.21.1)

---
updated-dependencies:
- dependency-name: doctrine/doctrine-bundle
  dependency-version: 2.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: doctrine/doctrine-migrations-bundle
  dependency-version: 3.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: php-prod
- dependency-name: doctrine/orm
  dependency-version: 3.3.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: php-prod
- dependency-name: nelmio/security-bundle
  dependency-version: 3.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: ramsey/uuid
  dependency-version: 4.8.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: twig/extra-bundle
  dependency-version: 3.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: twig/intl-extra
  dependency-version: 3.21.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: twig/twig
  dependency-version: 3.21.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/composer/php-prod-6214bc2d82 branch from 1019a6e to 5201bdf Compare October 1, 2025 12:20
@dependabot @github
Copy link
Copy Markdown
Contributor Author

dependabot Bot commented on behalf of github Oct 13, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Oct 13, 2025
@dependabot dependabot Bot deleted the dependabot/composer/php-prod-6214bc2d82 branch October 13, 2025 12:19
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants