Skip to content

build(deps): bump the composer-production-dependencies group across 1 directory with 6 updates#247

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/composer/src/quote/composer-production-dependencies-bbbb0a7ffc
Open

build(deps): bump the composer-production-dependencies group across 1 directory with 6 updates#247
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/composer/src/quote/composer-production-dependencies-bbbb0a7ffc

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 19, 2026
edited
Loading

Updates the requirements on monolog/monolog, open-telemetry/exporter-otlp, open-telemetry/opentelemetry-auto-slim, open-telemetry/detector-container, open-telemetry/opentelemetry-logger-monolog and guzzlehttp/guzzle to permit the latest version.
Updates monolog/monolog to 3.10.0

Release notes

Sourced from monolog/monolog's releases.

3.10.0

  • Added automatic directory cleanup in RotatingFileHandler (#2000)
  • Added timezone-aware file rotation to RotatingFileHandler (#1982)
  • Added support for mongodb/mongodb 2.0+ (#1998)
  • Added NoDiscard attribute to TestHandler methods to ensure the result is used (#2013)
  • Fixed JsonFormatter crashing if __toString throws while normalizing data (#1968)
  • Fixed PHP 8.5 deprecation warnings (#1997, #2009)
  • Fixed DeduplicatingHandler collecting duplicate logs if the file cannot be locked (2e97231)
  • Fixed GelfMessageFormatter to use integers instead of bool for gelf 1.1 support (#1973)
  • Fixed empty stack traces being output anyway (#1979)
  • Fixed StreamHandler not reopening the file if the inode changed (#1963)
  • Fixed TelegramBotHandler sending empty messages (#1992)
  • Fixed file paths in stack traces containing backslashes on windows, always using / now to unify logs (#1980)
  • Fixed RotatingFileHandler unlink errors not being suppressed correctly (#1999)

Full Changelog: Seldaek/monolog@3.9.0...3.10.0

Changelog

Sourced from monolog/monolog's changelog.

3.10.0 (2026-01-02)

  • Added automatic directory cleanup in RotatingFileHandler (#2000)
  • Added timezone-aware file rotation to RotatingFileHandler (#1982)
  • Added support for mongodb/mongodb 2.0+ (#1998)
  • Added NoDiscard attribute to TestHandler methods to ensure the result is used (#2013)
  • Fixed JsonFormatter crashing if __toString throws while normalizing data (#1968)
  • Fixed PHP 8.5 deprecation warnings (#1997, #2009)
  • Fixed DeduplicatingHandler collecting duplicate logs if the file cannot be locked (2e97231)
  • Fixed GelfMessageFormatter to use integers instead of bool for gelf 1.1 support (#1973)
  • Fixed empty stack traces being output anyway (#1979)
  • Fixed StreamHandler not reopening the file if the inode changed (#1963)
  • Fixed TelegramBotHandler sending empty messages (#1992)
  • Fixed file paths in stack traces containing backslashes on windows, always using / now to unify logs (#1980)
  • Fixed RotatingFileHandler unlink errors not being suppressed correctly (#1999)

3.9.0 (2025-03-24)

  • BC Warning: Fixed SendGridHandler to use the V3 API as V2 is now shut down, but this requires a new API key (#1952)
  • Deprecated Monolog\Test\TestCase in favor of Monolog\Test\MonologTestCase (#1953)
  • Added extension point for NativeMailerHandler::mail (#1948)
  • Added setHandler method to BufferHandler to modify the nested handler at runtime (#1946)
  • Fixed date format in ElasticsearchFormatter to use +00:00 vs +0000 tz identifiers (#1942)
  • Fixed GelfMessageFormatter handling numeric context/extra keys (#1932)

3.8.1 (2024-12-05)

  • Deprecated Monolog\DateTimeImmutable in favor of Monolog\JsonSerializableDateTimeImmutable (#1928)
  • Fixed gelf keys not being valid when context/extra data keys have spaces in them (#1927)
  • Fixed empty lines appearing in the stack traces when a custom formatter returned null (#1925)

3.8.0 (2024-11-12)

  • Added $fileOpenMode param to StreamHandler to define a custom fopen mode to open the log file (#1913)
  • Fixed PHP 8.4 deprecation notices (#1903)
  • Added ability to extend/override IntrospectionProcessor (#1899)
  • Added $timeout param to ProcessHandler to configure the stream_select() timeout to avoid blocking too long (default is 1.0 sec) (#1916)
  • Fixed JsonFormatter batch handling to normalize records individually to make sure they look the same as if they were handled one by one (#1906)
  • Fixed StreamHandler handling of write failures so that it now closes/reopens the stream and retries the write once before failing (#1882)
  • Fixed StreamHandler error handler causing issues if a stream handler triggers an error (#1866)
  • Fixed StreamHandler::reset not closing the stream, so that it would fail to write in some cases with long running processes (#1862)
  • Fixed RotatingFileHandler issue where rotation does not happen in some long running processes (#1905)
  • Fixed JsonFormatter handling of incomplete classes (#1834)
  • Fixed RotatingFileHandler bug where rotation could sometimes not happen correctly (#1905)

3.7.0 (2024-06-28)

  • Added NormalizerFormatter->setBasePath(...) (and JsonFormatter by extension) that allows removing the project's path from the stack trace output (47e301d3e)
  • Fixed JsonFormatter handling of incomplete classes (#1834)
  • Fixed private error handlers causing problems with custom StreamHandler implementations (#1866)

... (truncated)

Commits

Updates open-telemetry/exporter-otlp to 1.4.0

Release notes

Sourced from open-telemetry/exporter-otlp's releases.

Release 1.4.0

What's Changed:

  • Revert "Fix getLabel() deprecation warning with Protobuf 4.33+" by @​Nevay in 1880

Full Changelog: opentelemetry-php/exporter-otlp@1.3.4...1.4.0

Commits

Updates open-telemetry/opentelemetry-auto-slim to 1.4.0

Release notes

Sourced from open-telemetry/opentelemetry-auto-slim's releases.

Release 1.4.0

What's Changed:

Full Changelog: opentelemetry-php/contrib-auto-slim@1.3.0...1.4.0

Commits

Updates open-telemetry/detector-container to 1.3.0

Release notes

Sourced from open-telemetry/detector-container's releases.

Release 1.3.0

What's Changed:

  • detector-container. Update schema url to use Version::VERSION_1_38_0 by @​adiafora in 523

Full Changelog: opentelemetry-php/contrib-detector-container@1.2.0...1.3.0

Commits
  • d22f03d detector-container. Update schema url to use Version::VERSION_1_38_0 (#523)
  • 57c4eba Revert "chore(deps): update dependency vimeo/psalm to v6.16.1 (#512)" (#540)
  • 572d2c3 chore(deps): update dependency vimeo/psalm to v6.16.1 (#512)
  • af9de62 Fix homepage link (#448)
  • See full diff in compare view

Updates open-telemetry/opentelemetry-logger-monolog to 1.2.0

Release notes

Sourced from open-telemetry/opentelemetry-logger-monolog's releases.

Release 1.2.0

What's Changed:

  • Revert "chore(deps): update dependency vimeo/psalm to v6.16.1" by @​bobstrecansky in 540
  • chore(deps): update dependency vimeo/psalm to v6.16.1 by @​renovate[bot] in 512
  • [Monolog] Add option to directly assign context elements as attributes by @​smaddock in 467
  • feat: Allowed user-defined formatterInterface in opentelemetry-logger-monolog by @​jerrytfleung in 458

Full Changelog: opentelemetry-php/contrib-logger-monolog@1.1.0...1.2.0

Commits
  • 418b110 Revert "chore(deps): update dependency vimeo/psalm to v6.16.1 (#512)" (#540)
  • d73e768 chore(deps): update dependency vimeo/psalm to v6.16.1 (#512)
  • f8b51db [Monolog] Add option to directly assign context elements as attributes (#467)
  • c27f31e feat: Allowed user-defined formatterInterface in opentelemetry-logger-monolog...
  • See full diff in compare view

Updates guzzlehttp/guzzle to 7.10.1

Release notes

Sourced from guzzlehttp/guzzle's releases.

Release 7.10.1

Fixed

  • Fail clearly when cURL options cannot be applied
  • Fail clearly when the certificate option is malformed
  • Fail clearly when JSON decode depth is invalid
  • Fail clearly when session cookie data is malformed
  • Fail clearly when the stream progress option is not callable
  • Prevent response creation failures from exposing stale cURL responses
Changelog

Sourced from guzzlehttp/guzzle's changelog.

7.10.1 - 2026-05-19

Fixed

  • Fail clearly when cURL options cannot be applied
  • Fail clearly when the certificate option is malformed
  • Fail clearly when JSON decode depth is invalid
  • Fail clearly when session cookie data is malformed
  • Fail clearly when the stream progress option is not callable
  • Prevent response creation failures from exposing stale cURL responses

7.10.0 - 2025-08-23

Added

  • Support for PHP 8.5

Changed

  • Adjusted guzzlehttp/promises version constraint to ^2.3
  • Adjusted guzzlehttp/psr7 version constraint to ^2.8

7.9.3 - 2025-03-27

Changed

  • Remove explicit content-length header for GET requests
  • Improve compatibility with bad servers for boolean cookie values

7.9.2 - 2024-07-24

Fixed

  • Adjusted handler selection to use cURL if its version is 7.21.2 or higher, rather than 7.34.0

7.9.1 - 2024-07-19

Fixed

  • Fix TLS 1.3 check for HTTP/2 requests

7.9.0 - 2024-07-18

Changed

... (truncated)

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps): bump the composer-production-dependencies group across 1…
7957e39 
… directory with 6 updates

Updates the requirements on [monolog/monolog](https://github.com/Seldaek/monolog), [open-telemetry/exporter-otlp](https://github.com/opentelemetry-php/exporter-otlp), [open-telemetry/opentelemetry-auto-slim](https://github.com/opentelemetry-php/contrib-auto-slim), [open-telemetry/detector-container](https://github.com/opentelemetry-php/contrib-detector-container), [open-telemetry/opentelemetry-logger-monolog](https://github.com/opentelemetry-php/contrib-logger-monolog) and [guzzlehttp/guzzle](https://github.com/guzzle/guzzle) to permit the latest version.

Updates `monolog/monolog` to 3.10.0
- [Release notes](https://github.com/Seldaek/monolog/releases)
- [Changelog](https://github.com/Seldaek/monolog/blob/main/CHANGELOG.md)
- [Commits](Seldaek/monolog@3.9.0...3.10.0)

Updates `open-telemetry/exporter-otlp` to 1.4.0
- [Release notes](https://github.com/opentelemetry-php/exporter-otlp/releases)
- [Commits](opentelemetry-php/exporter-otlp@1.3.3...1.4.0)

Updates `open-telemetry/opentelemetry-auto-slim` to 1.4.0
- [Release notes](https://github.com/opentelemetry-php/contrib-auto-slim/releases)
- [Commits](opentelemetry-php/contrib-auto-slim@1.3.0...1.4.0)

Updates `open-telemetry/detector-container` to 1.3.0
- [Release notes](https://github.com/opentelemetry-php/contrib-detector-container/releases)
- [Commits](opentelemetry-php/contrib-detector-container@1.1.0...1.3.0)

Updates `open-telemetry/opentelemetry-logger-monolog` to 1.2.0
- [Release notes](https://github.com/opentelemetry-php/contrib-logger-monolog/releases)
- [Commits](opentelemetry-php/contrib-logger-monolog@1.1.0...1.2.0)

Updates `guzzlehttp/guzzle` to 7.10.1
- [Release notes](https://github.com/guzzle/guzzle/releases)
- [Changelog](https://github.com/guzzle/guzzle/blob/7.10/CHANGELOG.md)
- [Commits](guzzle/guzzle@7.10.0...7.10.1)

---
updated-dependencies:
- dependency-name: monolog/monolog
  dependency-version: 3.10.0
  dependency-type: direct:production
  dependency-group: composer-production-dependencies
- dependency-name: open-telemetry/exporter-otlp
  dependency-version: 1.4.0
  dependency-type: direct:production
  dependency-group: composer-production-dependencies
- dependency-name: open-telemetry/opentelemetry-auto-slim
  dependency-version: 1.4.0
  dependency-type: direct:production
  dependency-group: composer-production-dependencies
- dependency-name: open-telemetry/detector-container
  dependency-version: 1.3.0
  dependency-type: direct:production
  dependency-group: composer-production-dependencies
- dependency-name: open-telemetry/opentelemetry-logger-monolog
  dependency-version: 1.2.0
  dependency-type: direct:production
  dependency-group: composer-production-dependencies
- dependency-name: guzzlehttp/guzzle
  dependency-version: 7.10.1
  dependency-type: direct:production
  dependency-group: composer-production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels May 19, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants