build(deps): bump the composer group across 2 directories with 11 updates#425
Closed
dependabot[bot] wants to merge 1 commit into
Closed
build(deps): bump the composer group across 2 directories with 11 updates#425dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
…ates Bumps the composer group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [phpoffice/phpspreadsheet](https://github.com/PHPOffice/PhpSpreadsheet) | `4.5.0` | `5.7.0` | | [phpseclib/phpseclib](https://github.com/phpseclib/phpseclib) | `3.0.50` | `3.0.54` | | [guzzlehttp/psr7](https://github.com/guzzle/psr7) | `2.9.0` | `2.12.1` | | [symfony/cache](https://github.com/symfony/cache) | `7.4.8` | `7.4.13` | | [symfony/dom-crawler](https://github.com/symfony/dom-crawler) | `7.4.8` | `7.4.12` | | [symfony/http-foundation](https://github.com/symfony/http-foundation) | `6.4.35` | `6.4.41` | | [symfony/mailer](https://github.com/symfony/mailer) | `6.4.34` | `6.4.40` | | [symfony/routing](https://github.com/symfony/routing) | `6.4.34` | `6.4.41` | | [symfony/yaml](https://github.com/symfony/yaml) | `7.4.8` | `7.4.13` | Bumps the composer group with 1 update in the /WordPress Extension/libs directory: [guzzlehttp/psr7](https://github.com/guzzle/psr7). Updates `phpoffice/phpspreadsheet` from 4.5.0 to 5.7.0 - [Release notes](https://github.com/PHPOffice/PhpSpreadsheet/releases) - [Changelog](https://github.com/PHPOffice/PhpSpreadsheet/blob/master/CHANGELOG.md) - [Commits](PHPOffice/PhpSpreadsheet@4.5.0...5.7.0) Updates `phpseclib/phpseclib` from 3.0.50 to 3.0.54 - [Release notes](https://github.com/phpseclib/phpseclib/releases) - [Changelog](https://github.com/phpseclib/phpseclib/blob/master/CHANGELOG.md) - [Commits](phpseclib/phpseclib@3.0.50...3.0.54) Updates `guzzlehttp/psr7` from 2.9.0 to 2.12.1 - [Release notes](https://github.com/guzzle/psr7/releases) - [Changelog](https://github.com/guzzle/psr7/blob/2.12/CHANGELOG.md) - [Commits](guzzle/psr7@2.9.0...2.12.1) Updates `symfony/cache` from 7.4.8 to 7.4.13 - [Release notes](https://github.com/symfony/cache/releases) - [Changelog](https://github.com/symfony/cache/blob/8.2/CHANGELOG.md) - [Commits](symfony/cache@v7.4.8...v7.4.13) Updates `symfony/dom-crawler` from 7.4.8 to 7.4.12 - [Release notes](https://github.com/symfony/dom-crawler/releases) - [Changelog](https://github.com/symfony/dom-crawler/blob/8.2/CHANGELOG.md) - [Commits](symfony/dom-crawler@v7.4.8...v7.4.12) Updates `symfony/http-foundation` from 6.4.35 to 6.4.41 - [Release notes](https://github.com/symfony/http-foundation/releases) - [Changelog](https://github.com/symfony/http-foundation/blob/8.2/CHANGELOG.md) - [Commits](symfony/http-foundation@v6.4.35...v6.4.41) Updates `symfony/mailer` from 6.4.34 to 6.4.40 - [Release notes](https://github.com/symfony/mailer/releases) - [Changelog](https://github.com/symfony/mailer/blob/8.2/CHANGELOG.md) - [Commits](symfony/mailer@v6.4.34...v6.4.40) Updates `symfony/mime` from 6.4.36 to 6.4.41 - [Release notes](https://github.com/symfony/mime/releases) - [Changelog](https://github.com/symfony/mime/blob/8.2/CHANGELOG.md) - [Commits](symfony/mime@v6.4.36...v6.4.41) Updates `symfony/polyfill-intl-idn` from 1.33.0 to 1.38.1 - [Release notes](https://github.com/symfony/polyfill-intl-idn/releases) - [Commits](symfony/polyfill-intl-idn@v1.33.0...v1.38.1) Updates `symfony/routing` from 6.4.34 to 6.4.41 - [Release notes](https://github.com/symfony/routing/releases) - [Changelog](https://github.com/symfony/routing/blob/8.2/CHANGELOG.md) - [Commits](symfony/routing@v6.4.34...v6.4.41) Updates `symfony/yaml` from 7.4.8 to 7.4.13 - [Release notes](https://github.com/symfony/yaml/releases) - [Changelog](https://github.com/symfony/yaml/blob/8.2/CHANGELOG.md) - [Commits](symfony/yaml@v7.4.8...v7.4.13) Updates `guzzlehttp/psr7` from 2.9.0 to 2.12.1 - [Release notes](https://github.com/guzzle/psr7/releases) - [Changelog](https://github.com/guzzle/psr7/blob/2.12/CHANGELOG.md) - [Commits](guzzle/psr7@2.9.0...2.12.1) --- updated-dependencies: - dependency-name: phpoffice/phpspreadsheet dependency-version: 5.7.0 dependency-type: direct:production dependency-group: composer - dependency-name: phpseclib/phpseclib dependency-version: 3.0.54 dependency-type: direct:production dependency-group: composer - dependency-name: guzzlehttp/psr7 dependency-version: 2.12.1 dependency-type: indirect dependency-group: composer - dependency-name: symfony/cache dependency-version: 7.4.13 dependency-type: indirect dependency-group: composer - dependency-name: symfony/dom-crawler dependency-version: 7.4.12 dependency-type: indirect dependency-group: composer - dependency-name: symfony/http-foundation dependency-version: 6.4.41 dependency-type: indirect dependency-group: composer - dependency-name: symfony/mailer dependency-version: 6.4.40 dependency-type: indirect dependency-group: composer - dependency-name: symfony/mime dependency-version: 6.4.41 dependency-type: indirect dependency-group: composer - dependency-name: symfony/polyfill-intl-idn dependency-version: 1.38.1 dependency-type: indirect dependency-group: composer - dependency-name: symfony/routing dependency-version: 6.4.41 dependency-type: indirect dependency-group: composer - dependency-name: symfony/yaml dependency-version: 7.4.13 dependency-type: indirect dependency-group: composer - dependency-name: guzzlehttp/psr7 dependency-version: 2.12.1 dependency-type: indirect dependency-group: composer ... Signed-off-by: dependabot[bot] <support@github.com>
Contributor
Author
|
Superseded by #426. |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the composer group with 9 updates in the / directory:
4.5.05.7.03.0.503.0.542.9.02.12.17.4.87.4.137.4.87.4.126.4.356.4.416.4.346.4.406.4.346.4.417.4.87.4.13Bumps the composer group with 1 update in the /WordPress Extension/libs directory: guzzlehttp/psr7.
Updates
phpoffice/phpspreadsheetfrom 4.5.0 to 5.7.0Release notes
Sourced from phpoffice/phpspreadsheet's releases.
... (truncated)
Changelog
Sourced from phpoffice/phpspreadsheet's changelog.
... (truncated)
Commits
9f55d3bMerge pull request #4859 from oleibman/updchangelog202604192e35213Update Changelog for New Release9019a9cMerge commit from forkf1eb4e6Merge commit from fork9b90deeMerge pull request #4857 from oleibman/changelog20260406f302b32Prepare Changelog For New Release4a47607Merge pull request #4850 from oleibman/updatestan8a9e9b5Merge pull request #4845 from oleibman/csvnonutf85d6d7d5Merge branch 'master' into csvnonutf86f23fe3Merge pull request #4844 from oleibman/xlookupUpdates
phpseclib/phpseclibfrom 3.0.50 to 3.0.54Release notes
Sourced from phpseclib/phpseclib's releases.
Changelog
Sourced from phpseclib/phpseclib's changelog.
Commits
5418963Merge branch '2.0' into 3.0d73c9e0Merge branch '1.0' into 2.0fa867e5CHANGELOG: add new release5bbefa4X509: add visibility5eabac9Merge branch '2.0' into 3.0bab8dc0X509: make setURLFetchCallback static and use filter_varf5c33c4Merge branch '1.0' into 2.00987dd9X509: add setURLFetchCallback() method00c3bd1DSA/PKCS1: require version be 09116b83BigInteger/GMP: getLengthInBytes() fix for empty stringsUpdates
guzzlehttp/psr7from 2.9.0 to 2.12.1Release notes
Sourced from guzzlehttp/psr7's releases.
... (truncated)
Changelog
Sourced from guzzlehttp/psr7's changelog.
... (truncated)
Commits
172ef2fRelease 2.12.1f3f94b4Mitigate CRLF Injection in HTTP Start-Line Serialization (#798)9b38012Release 2.12.0fffbe3dDeprecate non-string scalar stream bodies and query values (#790)6a37393Deprecate non-finite float values (#788)640e289Release 2.11.10220ac9Fix non-finite float coercion warnings on PHP 8.5 (#787)bbb5e61Release 2.11.0aac7d94Restore copyToStream throws annotation (#781)d6f9070Fix copyToStream short writes (#772)Updates
symfony/cachefrom 7.4.8 to 7.4.13Release notes
Sourced from symfony/cache's releases.
Commits
4c09e18Merge branch '6.4' into 7.45490a57Merge branch '5.4' into 6.4bf58147[Cache] skip tests for adapters that cannot clear by prefixf796e47Ignore Doctrine DBAL deprecations that can't be worked aroundbf9d30fMerge branch '6.4' into 7.403472b6[Cache] Fix strlen(null) deprecation on RelayCluster path in RedisTrait::doCl...8602405Merge branch '5.4' into 6.44acd37c[Cache] Accept '_' and ':' in prefix passed to AbstractAdapter::clear()902d621Merge branch '6.4' into 7.48f9b022Merge branch '5.4' into 6.4Updates
symfony/dom-crawlerfrom 7.4.8 to 7.4.12Release notes
Sourced from symfony/dom-crawler's releases.
Commits
b59b591Merge branch '6.4' into 7.47e65f76Merge branch '5.4' into 6.4b18373eMerge branch '6.4' into 7.4505deba[DomCrawler] FixChoiceFormField::addChoice()clobbering values on multi-se...f474100Update XSD references in phpunit.xml.dist filesb4cf17f[DomCrawler] Fix XXE in addXmlContent() by not enablingvalidateOnParse6d86f97[Tests] Fix "Incomplete version" PHPUnit warnings04ca269Merge branch '6.4' into 7.4eac26cfMore CS fixesca5ad73Merge branch '6.4' into 7.4Updates
symfony/http-foundationfrom 6.4.35 to 6.4.41Release notes
Sourced from symfony/http-foundation's releases.
Commits
48d76c2security #cve-2026-48736 [HttpFoundation] Block IPv6 transition forms in IpUt...10d5daa[HttpFoundation] Fix tests for PHP 8.6: session.cookie_samesite=Lax3ebc78a[HttpFoundation] Block IPv6 transition forms in IpUtils::PRIVATE_SUBNETS5402ad1Remove wrong documentation92eeee6CS fixes - native_function_invocation & static_lambdaUpdates
symfony/mailerfrom 6.4.34 to 6.4.40Release notes
Sourced from symfony/mailer's releases.
Commits
94fd44fMerge branch '5.4' into 6.45b5385b[Mailer] Add end-of-options separator before recipients in SendmailTransport;...602519cPHP CS Fixer: backports changes toward 6.4 brancha2918c6CS fixes - native_function_invocation & static_lambdad56a83b[CS] Back config from 8.1 and apply heredoc_indentation ruleUpdates
symfony/mimefrom 6.4.36 to 6.4.41Release notes
Sourced from symfony/mime's releases.
Commits
5575d37[Routing][RateLimiter][Mime][Security] Harden __unserialize against __toStrin...7ccfb0cMerge branch '5.4' into 6.48f89d3a[Mime] Reject email addresses containing line breaks in Addressf2f05cb[Mime] Fix transient test330077bbug #64047 [Mime] Preserve inline part filename instead of overwriting it wit...4c7099f[Mime] Preserve inline part filename instead of overwriting it with the Conte...e2ae51d[FrameworkBundle] Apply tagged MIME type guessers in File::getMimeType()3d48678More CS fixes05099f5CS fixes - native_function_invocation & static_lambdaf56fd2b[CS] Back config from 8.1 and apply heredoc_indentation ruleUpdates
symfony/polyfill-intl-idnfrom 1.33.0 to 1.38.1Release notes
Sourced from symfony/polyfill-intl-idn's releases.
Commits
dc21118[Intl][Idn] Reject xn-- labels whose Punycode payload decodes to ASCII-onlyUpdates
symfony/routingfrom 6.4.34 to 6.4.41Release notes
Sourced from symfony/routing's releases.
Commits
af04c79Merge branch '5.4' into 6.4be4ce34[Routing][RateLimiter][Mime][Security] Harden __unserialize against __toStrin...f4ca0c5[Routing] Fix dot-segment encoding for chained "../" and "./" in generated URLs0cd0d2fMerge branch '5.4' into 6.448035d1[Routing] Honor the Request's method in UrlMatcher::matchRequest()275b313[Routing] Fix regex alternation anchoring in UrlGenerator requirement validation1425c2cMore CS fixes883d140CS fixes - native_function_invocation & static_lambda4bcf92a[CS] Back config from 8.1 and apply heredoc_indentation ruleUpdates
symfony/yamlfrom 7.4.8 to 7.4.13Release notes
Sourced from symfony/yaml's releases.
Commits
a7ec3b1Merge branch '6.4' into 7.4e8fdf34CS fix4b5658cMerge branch '6.4' into 7.469b7344Merge branch '5.4' into 6.4ae0bbb4[Yaml] Allow trailing newlines after the end-of-document marker8b6952bMerge branch '6.4' into 7.468dcd1fMerge branch '5.4' into 6.4b0b2705[Yaml] Harden the Parser::cleanup() regexes against catastrophic backtracking5a351ff[Yaml] Bound collection-alias resolution in the parsere2eb64aMerge branch '6.4' into 7.4Updates
guzzlehttp/psr7from 2.9.0 to 2.12.1Release notes
Sourced from guzzlehttp/psr7's releases.
... (truncated)
Changelog
Sourced from guzzlehttp/psr7's changelog.
... (truncated)
Commits
172ef2fRelease 2.12.1f3f94b4Mitigate CRLF Injection in HTTP Start-Line Serialization (#798)9b38012Release 2.12.0fffbe3dDeprecate non-string scalar stream bodies and query values (#790)6a37393Deprecate non-finite float values (#788)640e289Release 2.11.10220ac9Fix non-finite float coercion warnings on PHP 8.5 (#787)bbb5e61Release 2.11.0aac7d94Restore copyToStream throws annotation (#781)d6f9070Fix copyToStream short writes (#772)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)Description has been truncated