Skip to content

Commit

Permalink
chore(deps): bump composer/composer from 2.7.9 to 2.8.2 in /packages/…
Browse files Browse the repository at this point in the history 
…php in the minor-production-deps group (#1115)

Bumps the minor-production-deps group in /packages/php with 1 update:
[composer/composer](https://github.com/composer/composer).

Updates `composer/composer` from 2.7.9 to 2.8.2
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/composer/composer/releases">composer/composer's
releases</a>.</em></p>
<blockquote>
<h2>2.8.2</h2>
<ul>
<li>Fixed crash while suggesting providers if they have no description
(<a
href="https://redirect.github.com/composer/composer/issues/12152">#12152</a>)</li>
<li>Fixed issues creating lock files violating the schema in some
circumstances (<a
href="https://redirect.github.com/composer/composer/issues/12149">#12149</a>)</li>
<li>Fixed <code>create-project</code> regression in 2.8.1 when using
path repos with relative paths (<a
href="https://redirect.github.com/composer/composer/issues/12150">#12150</a>)</li>
<li>Fixed ctrl-C aborts not working inside text prompts (<a
href="https://redirect.github.com/composer/composer/issues/12106">#12106</a>)</li>
<li>Fixed git failing silently when git cannot read a repo due to
ownership violations (<a
href="https://redirect.github.com/composer/composer/issues/12178">#12178</a>)</li>
<li>Fixed handling of signals in non-PHP binaries run via proxies (<a
href="https://redirect.github.com/composer/composer/issues/12176">#12176</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/composer/composer/compare/2.8.1...2.8.2">https://github.com/composer/composer/compare/2.8.1...2.8.2</a></p>
<h2>2.8.1</h2>
<ul>
<li>Fixed <code>init</code> command regression when no license is
provided (<a
href="https://redirect.github.com/composer/composer/issues/12145">#12145</a>)</li>
<li>Fixed <code>--strict-ambiguous</code> flag handling whereas it
sometimes did not report all issues (<a
href="https://redirect.github.com/composer/composer/issues/12148">#12148</a>)</li>
<li>Fixed <code>create-project</code> to inherit the target folder's
permissions for installed project files (<a
href="https://redirect.github.com/composer/composer/issues/12146">#12146</a>)</li>
<li>Fixed a few cases where the prompt for using a parent dir's
composer.json fails to work correctly (<a
href="https://redirect.github.com/composer/composer/issues/8023">#8023</a>)</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/composer/composer/compare/2.8.0...2.8.1">https://github.com/composer/composer/compare/2.8.0...2.8.1</a></p>
<h2>2.8.0</h2>
<ul>
<li>BC Warning: Fixed <code>https_proxy</code> env var falling back to
<code>http_proxy</code>'s value. The fallback and warning have now been
removed per the 2.7.3 release notes (<a
href="https://redirect.github.com/composer/composer/issues/11938">#11938</a>,
<a
href="https://redirect.github.com/composer/composer/issues/11915">#11915</a>)</li>
<li>Added <code>--patch-only</code> flag to the <code>update</code>
command to restrict updates to patch versions and make an update of all
deps safer (<a
href="https://redirect.github.com/composer/composer/issues/12122">#12122</a>)</li>
<li>Added <code>--abandoned</code> flag to the <code>audit</code>
command to configure how abandoned packages should be treated,
overriding the <code>audit.abandoned</code> config setting (<a
href="https://redirect.github.com/composer/composer/issues/12091">#12091</a>)</li>
<li>Added <code>--ignore-severity</code> flag to the <code>audit</code>
command to ignore one or more advisory severities (<a
href="https://redirect.github.com/composer/composer/issues/12132">#12132</a>)</li>
<li>Added <code>--bump-after-update</code> flag to the
<code>update</code> command to run bump after the update is done (<a
href="https://redirect.github.com/composer/composer/issues/11942">#11942</a>)</li>
<li>Added a way to control which <code>scripts</code> receive additional
CLI arguments and where they appear in the command, see <a
href="https://getcomposer.org/doc/articles/scripts.md#controlling-additional-arguments">the
docs</a> (<a
href="https://redirect.github.com/composer/composer/issues/12086">#12086</a>)</li>
<li>Added <code>allow-missing-requirements</code> config setting to skip
the error when the lock file is not fulfilling the composer.json's
dependencies (<a
href="https://redirect.github.com/composer/composer/issues/11966">#11966</a>)</li>
<li>Added a JSON schema for the composer.lock file (<a
href="https://redirect.github.com/composer/composer/issues/12123">#12123</a>)</li>
<li>Added better support for Bitbucket app passwords when cloning repos
/ installing from source (<a
href="https://redirect.github.com/composer/composer/issues/12103">#12103</a>)</li>
<li>Added <code>--type</code> flag to filter packages by type(s) in the
<code>reinstall</code> command (<a
href="https://redirect.github.com/composer/composer/issues/12114">#12114</a>)</li>
<li>Added <code>--strict-ambiguous</code> flag to the
<code>dump-autoload</code> command to make it return with an error code
if duplicate classes are found (<a
href="https://redirect.github.com/composer/composer/issues/12119">#12119</a>)</li>
<li>Added warning in <code>dump-autoload</code> when vendor files have
been deleted (<a
href="https://redirect.github.com/composer/composer/issues/12139">#12139</a>)</li>
<li>Added warnings for each missing platform package when running
<code>create-project</code> to avoid having to run it again and again
(<a
href="https://redirect.github.com/composer/composer/issues/12120">#12120</a>)</li>
<li>Added sorting of packages in allow-plugins when
<code>sort-packages</code> is enabled (<a
href="https://redirect.github.com/composer/composer/issues/11348">#11348</a>)</li>
<li>Added suggestion of provider packages / polyfills when an ext or lib
package is missing (<a
href="https://redirect.github.com/composer/composer/issues/12113">#12113</a>)</li>
<li>Improved interactive package update selection by first outputting
all packages and their possible updates (<a
href="https://redirect.github.com/composer/composer/issues/11990">#11990</a>)</li>
<li>Improved dependency resolution failure output by sorting the output
in a deterministic and (often) more logical way (<a
href="https://redirect.github.com/composer/composer/issues/12111">#12111</a>)</li>
<li>Fixed PHP 8.4 deprecation warnings about <code>E_STRICT</code> (<a
href="https://redirect.github.com/composer/composer/issues/12116">#12116</a>)</li>
<li>Fixed <code>init</code> command to validate the given license
identifier (<a
href="https://redirect.github.com/composer/composer/issues/12115">#12115</a>)</li>
<li>Fixed version guessing to be more deterministic on feature branches
if it appears that it could come from either of two mainline branches
(<a
href="https://redirect.github.com/composer/composer/issues/12129">#12129</a>)</li>
<li>Fixed COMPOSER_ROOT_VERSION env var handling to treat 1.2 the same
as 1.2.x-dev and not 1.2.0 (<a
href="https://redirect.github.com/composer/composer/issues/12109">#12109</a>)</li>
<li>Fixed require command skipping new stability flags from the lock
file, causing invalid lock file diffs (<a
href="https://redirect.github.com/composer/composer/issues/12112">#12112</a>)</li>
<li>Fixed php://stdin potentially being open several times when running
Composer programmatically (<a
href="https://redirect.github.com/composer/composer/issues/12107">#12107</a>)</li>
<li>Fixed handling of platform packages in why-not command and partial
updates (<a
href="https://redirect.github.com/composer/composer/issues/12110">#12110</a>)</li>
<li>Reverted &quot;Fixed transport-options.ssl for local cert
authorization being stored in lock file making them less portable (<a
href="https://redirect.github.com/composer/composer/issues/12019">#12019</a>)&quot;
from 2.7.8 as it was broken</li>
</ul>
<p><strong>Full Changelog</strong>: <a
href="https://github.com/composer/composer/compare/2.7.9...2.8.0">https://github.com/composer/composer/compare/2.7.9...2.8.0</a></p>
</blockquote>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a
href="https://github.com/composer/composer/blob/main/CHANGELOG.md">composer/composer's
changelog</a>.</em></p>
<blockquote>
<h3>[2.8.2] 2024-10-29</h3>
<ul>
<li>Fixed crash while suggesting providers if they have no description
(<a
href="https://redirect.github.com/composer/composer/issues/12152">#12152</a>)</li>
<li>Fixed issues creating lock files violating the schema in some
circumstances (<a
href="https://redirect.github.com/composer/composer/issues/12149">#12149</a>)</li>
<li>Fixed <code>create-project</code> regression in 2.8.1 when using
path repos with relative paths (<a
href="https://redirect.github.com/composer/composer/issues/12150">#12150</a>)</li>
<li>Fixed ctrl-C aborts not working inside text prompts (<a
href="https://redirect.github.com/composer/composer/issues/12106">#12106</a>)</li>
<li>Fixed git failing silently when git cannot read a repo due to
ownership violations (<a
href="https://redirect.github.com/composer/composer/issues/12178">#12178</a>)</li>
<li>Fixed handling of signals in non-PHP binaries run via proxies (<a
href="https://redirect.github.com/composer/composer/issues/12176">#12176</a>)</li>
</ul>
<h3>[2.8.1] 2024-10-04</h3>
<ul>
<li>Fixed <code>init</code> command regression when no license is
provided (<a
href="https://redirect.github.com/composer/composer/issues/12145">#12145</a>)</li>
<li>Fixed <code>--strict-ambiguous</code> flag handling whereas it
sometimes did not report all issues (<a
href="https://redirect.github.com/composer/composer/issues/12148">#12148</a>)</li>
<li>Fixed <code>create-project</code> to inherit the target folder's
permissions for installed project files (<a
href="https://redirect.github.com/composer/composer/issues/12146">#12146</a>)</li>
<li>Fixed a few cases where the prompt for using a parent dir's
composer.json fails to work correctly (<a
href="https://redirect.github.com/composer/composer/issues/8023">#8023</a>)</li>
</ul>
<h3>[2.8.0] 2024-10-02</h3>
<ul>
<li>BC Warning: Fixed <code>https_proxy</code> env var falling back to
<code>http_proxy</code>'s value. The fallback and warning have now been
removed per the 2.7.3 release notes (<a
href="https://redirect.github.com/composer/composer/issues/11938">#11938</a>,
<a
href="https://redirect.github.com/composer/composer/issues/11915">#11915</a>)</li>
<li>Added <code>--patch-only</code> flag to the <code>update</code>
command to restrict updates to patch versions and make an update of all
deps safer (<a
href="https://redirect.github.com/composer/composer/issues/12122">#12122</a>)</li>
<li>Added <code>--abandoned</code> flag to the <code>audit</code>
command to configure how abandoned packages should be treated,
overriding the <code>audit.abandoned</code> config setting (<a
href="https://redirect.github.com/composer/composer/issues/12091">#12091</a>)</li>
<li>Added <code>--ignore-severity</code> flag to the <code>audit</code>
command to ignore one or more advisory severities (<a
href="https://redirect.github.com/composer/composer/issues/12132">#12132</a>)</li>
<li>Added <code>--bump-after-update</code> flag to the
<code>update</code> command to run bump after the update is done (<a
href="https://redirect.github.com/composer/composer/issues/11942">#11942</a>)</li>
<li>Added a way to control which <code>scripts</code> receive additional
CLI arguments and where they appear in the command, see <a
href="https://getcomposer.org/doc/articles/scripts.md#controlling-additional-arguments">the
docs</a> (<a
href="https://redirect.github.com/composer/composer/issues/12086">#12086</a>)</li>
<li>Added <code>allow-missing-requirements</code> config setting to skip
the error when the lock file is not fulfilling the composer.json's
dependencies (<a
href="https://redirect.github.com/composer/composer/issues/11966">#11966</a>)</li>
<li>Added a JSON schema for the composer.lock file (<a
href="https://redirect.github.com/composer/composer/issues/12123">#12123</a>)</li>
<li>Added better support for Bitbucket app passwords when cloning repos
/ installing from source (<a
href="https://redirect.github.com/composer/composer/issues/12103">#12103</a>)</li>
<li>Added <code>--type</code> flag to filter packages by type(s) in the
<code>reinstall</code> command (<a
href="https://redirect.github.com/composer/composer/issues/12114">#12114</a>)</li>
<li>Added <code>--strict-ambiguous</code> flag to the
<code>dump-autoload</code> command to make it return with an error code
if duplicate classes are found (<a
href="https://redirect.github.com/composer/composer/issues/12119">#12119</a>)</li>
<li>Added warning in <code>dump-autoload</code> when vendor files have
been deleted (<a
href="https://redirect.github.com/composer/composer/issues/12139">#12139</a>)</li>
<li>Added warnings for each missing platform package when running
<code>create-project</code> to avoid having to run it again and again
(<a
href="https://redirect.github.com/composer/composer/issues/12120">#12120</a>)</li>
<li>Added sorting of packages in allow-plugins when
<code>sort-packages</code> is enabled (<a
href="https://redirect.github.com/composer/composer/issues/11348">#11348</a>)</li>
<li>Added suggestion of provider packages / polyfills when an ext or lib
package is missing (<a
href="https://redirect.github.com/composer/composer/issues/12113">#12113</a>)</li>
<li>Improved interactive package update selection by first outputting
all packages and their possible updates (<a
href="https://redirect.github.com/composer/composer/issues/11990">#11990</a>)</li>
<li>Improved dependency resolution failure output by sorting the output
in a deterministic and (often) more logical way (<a
href="https://redirect.github.com/composer/composer/issues/12111">#12111</a>)</li>
<li>Fixed PHP 8.4 deprecation warnings about <code>E_STRICT</code> (<a
href="https://redirect.github.com/composer/composer/issues/12116">#12116</a>)</li>
<li>Fixed <code>init</code> command to validate the given license
identifier (<a
href="https://redirect.github.com/composer/composer/issues/12115">#12115</a>)</li>
<li>Fixed version guessing to be more deterministic on feature branches
if it appears that it could come from either of two mainline branches
(<a
href="https://redirect.github.com/composer/composer/issues/12129">#12129</a>)</li>
<li>Fixed COMPOSER_ROOT_VERSION env var handling to treat 1.2 the same
as 1.2.x-dev and not 1.2.0 (<a
href="https://redirect.github.com/composer/composer/issues/12109">#12109</a>)</li>
<li>Fixed require command skipping new stability flags from the lock
file, causing invalid lock file diffs (<a
href="https://redirect.github.com/composer/composer/issues/12112">#12112</a>)</li>
<li>Fixed php://stdin potentially being open several times when running
Composer programmatically (<a
href="https://redirect.github.com/composer/composer/issues/12107">#12107</a>)</li>
<li>Fixed handling of platform packages in why-not command and partial
updates (<a
href="https://redirect.github.com/composer/composer/issues/12110">#12110</a>)</li>
<li>Reverted &quot;Fixed transport-options.ssl for local cert
authorization being stored in lock file making them less portable (<a
href="https://redirect.github.com/composer/composer/issues/12019">#12019</a>)&quot;
from 2.7.8 as it was broken</li>
</ul>
</blockquote>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="https://github.com/composer/composer/commit/6e543d03187c882ea1c6ba43add2467754427803"><code>6e543d0</code></a>
Release 2.8.2</li>
<li><a
href="https://github.com/composer/composer/commit/f95668341890e5cb7f2dfdc9f1203b8cdc3d2ba0"><code>f956683</code></a>
Update changelog</li>
<li><a
href="https://github.com/composer/composer/commit/e02f7ba58b3f6428d146f0d6eec51468d22da9b7"><code>e02f7ba</code></a>
Fix parsing of comments in arrays of sponsor info, fixes <a
href="https://redirect.github.com/composer/packagist/issues/1473">composer/packagist#1473</a></li>
<li><a
href="https://github.com/composer/composer/commit/e0ed22bbd0d88e4ddaaf3e5d764a4467f33eb04e"><code>e0ed22b</code></a>
Warn/throw when we detect git safe.directory errors (<a
href="https://redirect.github.com/composer/composer/issues/12178">#12178</a>)</li>
<li><a
href="https://github.com/composer/composer/commit/1f0d0128451a5c1aed79da9607c49c80125cdc34"><code>1f0d012</code></a>
Add hint how ambiguous class issues can be resolved, refs <a
href="https://redirect.github.com/composer/composer/issues/6221">#6221</a>
(<a
href="https://redirect.github.com/composer/composer/issues/12179">#12179</a>)</li>
<li><a
href="https://github.com/composer/composer/commit/5c3f6e070d9a28bc980c64e43ccd025a8735e725"><code>5c3f6e0</code></a>
Remove SignalHandler from Application to fix issues handling ctrl-C
inside pr...</li>
<li><a
href="https://github.com/composer/composer/commit/e12cfa0c403651b4b422c0269420e7f543f00104"><code>e12cfa0</code></a>
Fix create-project regression when using path repos with relative paths,
fixe...</li>
<li><a
href="https://github.com/composer/composer/commit/fa5b361f34d9841d724772a4d67ce86b62c7fa26"><code>fa5b361</code></a>
Fix handling of signals in non-PHP binaries run via proxies (<a
href="https://redirect.github.com/composer/composer/issues/12176">#12176</a>)</li>
<li><a
href="https://github.com/composer/composer/commit/0a4c2a92aa3d7743b21da570aa964ddf66595d50"><code>0a4c2a9</code></a>
Update deps</li>
<li><a
href="https://github.com/composer/composer/commit/186d78cde397a3f4adbd600d61e5d4b85dbf7832"><code>186d78c</code></a>
Add php-ext to array dumper</li>
<li>Additional commits viewable in <a
href="https://github.com/composer/composer/compare/2.7.9...2.8.2">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=composer/composer&package-manager=composer&previous-version=2.7.9&new-version=2.8.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show <dependency name> ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore <dependency name> major version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's major version (unless you unignore this specific
dependency's major version or upgrade to it yourself)
- `@dependabot ignore <dependency name> minor version` will close this
group update PR and stop Dependabot creating any more for the specific
dependency's minor version (unless you unignore this specific
dependency's minor version or upgrade to it yourself)
- `@dependabot ignore <dependency name>` will close this group update PR
and stop Dependabot creating any more for the specific dependency
(unless you unignore this specific dependency or upgrade to it yourself)
- `@dependabot unignore <dependency name>` will remove all of the ignore
conditions of the specified dependency
- `@dependabot unignore <dependency name> <ignore condition>` will
remove the ignore condition of the specified dependency and ignore
conditions


</details>

Signed-off-by: dependabot[bot] <[email protected]>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Andrii Andreiev <[email protected]>
  • Loading branch information
@dependabot @AndriiAndreiev
dependabot[bot] and AndriiAndreiev authored Nov 15, 2024
1 parent 8aa1fb3 commit b4b2056
Showing 1 changed file with 61 additions and 61 deletions.
122 changes: 61 additions & 61 deletions packages/php/composer.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

0 comments on commit b4b2056

Please sign in to comment.