chore(supported-version): bump composer 2.9.3 -> 2.9.7 (security)

Composer 2.9.3 has a known security vulnerability. Bump to 2.9.7 across
all version entries that referenced 2.9.3 (Mage-OS 1.x and 2.2.x lines,
the new Magento 2.4.9 entry, and the upcoming-release fields in the
magento-open-source composite default/next entries).

The composer field is consumed as `tools: composer:v\${{ matrix.composer }}`
by setup-php, which requires an exact patch version (a floating "2.9"
constraint is not supported by that tool spec).

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

Author: rhoerr

supported-version/dist/index.js

@@ -84,8 +84,8 @@ describe('getUsableVersions for mage-os', () => {
 
     it('should filter out mage-os 2.2.1 due to security advisory', () => {
         mockGetVersions.mockReturnValue({
-            'mage-os/project-community-edition:2.2.0': { composer: '2.9.3' },
-            'mage-os/project-community-edition:2.2.1': { composer: '2.9.3' }
+            'mage-os/project-community-edition:2.2.0': { composer: '2.9.7' },
+            'mage-os/project-community-edition:2.2.1': { composer: '2.9.7' }
         });
 
         const versions = getUsableVersions(project);

supported-version/src/kind/get-usable.spec.ts

@@ -2,7 +2,7 @@
   "mage-os/project-community-edition:>=1.0 <1.1": {
     "magento": "mage-os/project-community-edition:>=1.0 <1.1",
     "php": 8.3,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mariadb:10.6",
     "elasticsearch": "elasticsearch:8.11.4",
     "rabbitmq": "rabbitmq:3.13-management",
@@ -16,7 +16,7 @@
   "mage-os/project-community-edition:>=1.1 <1.2": {
     "magento": "mage-os/project-community-edition:>=1.1 <1.2",
     "php": 8.4,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mysql:8.4",
     "opensearch": "opensearchproject/opensearch:2.19.1",
     "rabbitmq": "rabbitmq:4.0-management",
@@ -30,7 +30,7 @@
   "mage-os/project-community-edition:>=1.2 <1.3": {
     "magento": "mage-os/project-community-edition:>=1.2 <1.3",
     "php": 8.4,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mysql:8.4",
     "opensearch": "opensearchproject/opensearch:2.19.1",
     "rabbitmq": "rabbitmq:4.0-management",
@@ -44,7 +44,7 @@
   "mage-os/project-community-edition:>=1.3 <1.4": {
     "magento": "mage-os/project-community-edition:>=1.3 <1.4",
     "php": 8.4,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mysql:8.4",
     "opensearch": "opensearchproject/opensearch:2.19.1",
     "rabbitmq": "rabbitmq:4.0-management",
@@ -58,7 +58,7 @@
   "mage-os/project-community-edition:>=2.0 <2.1": {
     "magento": "mage-os/project-community-edition:>=2.0 <2.1",
     "php": 8.4,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mysql:8.4",
     "opensearch": "opensearchproject/opensearch:2.19.1",
     "rabbitmq": "rabbitmq:4.0-management",
@@ -72,7 +72,7 @@
   "mage-os/project-community-edition:>=2.1 <2.2": {
     "magento": "mage-os/project-community-edition:>=2.1 <2.2",
     "php": 8.4,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mysql:8.4",
     "opensearch": "opensearchproject/opensearch:2.19.1",
     "rabbitmq": "rabbitmq:4.0-management",
@@ -86,7 +86,7 @@
   "mage-os/project-community-edition:>=2.2 <2.3": {
     "magento": "mage-os/project-community-edition:>=2.2 <2.3",
     "php": 8.4,
-    "composer": "2.9.3",
+    "composer": "2.9.7",
     "mysql": "mysql:8.4",
     "opensearch": "opensearchproject/opensearch:2.19.1",
     "rabbitmq": "rabbitmq:4.0-management",

supported-version/src/versions/mage-os/composite.json

@@ -108,7 +108,7 @@
         "magento": "mage-os/project-community-edition:1.1.0",
         "upstream": "2.4.8",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -123,7 +123,7 @@
         "magento": "mage-os/project-community-edition:1.1.1",
         "upstream": "2.4.8",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -138,7 +138,7 @@
         "magento": "mage-os/project-community-edition:1.2.0",
         "upstream": "2.4.8-p1",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -153,7 +153,7 @@
         "magento": "mage-os/project-community-edition:1.3.0",
         "upstream": "2.4.8-p2",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -168,7 +168,7 @@
         "magento": "mage-os/project-community-edition:1.3.1",
         "upstream": "2.4.8-p2",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -183,7 +183,7 @@
         "magento": "mage-os/project-community-edition:2.0.0",
         "upstream": "2.4.8-p3",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -198,7 +198,7 @@
         "magento": "mage-os/project-community-edition:2.1.0",
         "upstream": "2.4.8-p3",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -213,7 +213,7 @@
         "magento": "mage-os/project-community-edition:2.2.0",
         "upstream": "2.4.8-p4",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",
@@ -228,7 +228,7 @@
         "magento": "mage-os/project-community-edition:2.2.1",
         "upstream": "2.4.8-p4",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mysql:8.4",
         "opensearch": "opensearchproject/opensearch:2.19.1",
         "rabbitmq": "rabbitmq:4.0-management",

supported-version/src/versions/mage-os/individual.json

@@ -142,7 +142,7 @@
     "magento/project-community-edition:>=2.4.9 <2.4.10": {
         "magento": "magento/project-community-edition:>=2.4.9 <2.4.10",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mariadb:11.4",
         "opensearch": "opensearchproject/opensearch:3",
         "rabbitmq": "rabbitmq:4.1-management",
@@ -156,7 +156,7 @@
     "magento/project-community-edition": {
         "magento": "magento/project-community-edition",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mariadb:11.4",
         "opensearch": "opensearchproject/opensearch:3",
         "rabbitmq": "rabbitmq:4.1-management",
@@ -170,7 +170,7 @@
     "magento/project-community-edition:next": {
         "magento": "magento/project-community-edition:next",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mariadb:11.4",
         "opensearch": "opensearchproject/opensearch:3",
         "rabbitmq": "rabbitmq:4.1-management",

supported-version/src/versions/magento-open-source/composite.json

@@ -1052,7 +1052,7 @@
     "magento/project-community-edition:2.4.9": {
         "magento": "magento/project-community-edition:2.4.9",
         "php": 8.4,
-        "composer": "2.9.3",
+        "composer": "2.9.7",
         "mysql": "mariadb:11.4",
         "opensearch": "opensearchproject/opensearch:3",
         "rabbitmq": "rabbitmq:4.1-management",