Skip to content

Bump composer/composer from 2.0.13 to 2.1.4#461

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/composer/composer/composer-2.1.4
Closed

Bump composer/composer from 2.0.13 to 2.1.4#461
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/composer/composer/composer-2.1.4

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jul 22, 2021

Bumps composer/composer from 2.0.13 to 2.1.4.

Release notes

Sourced from composer/composer's releases.

2.1.4

  • Fixed PHP 8.1 deprecation warnings (#10008)
  • Fixed support for working within UNC/WSL paths on Windows (#9993)
  • Fixed 7-zip support to also be looked up on Linux/macOS as 7z or 7zz (#9951)
  • Fixed repositories' only/exclude properties to avoid matching names as sub-strings of full package names (#10001)
  • Fixed open_basedir regression from #9855
  • Fixed schema errors being reported incorrectly in some conditions (#9986)
  • Fixed archive command not working with async archive extraction
  • Fixed init command being able to generate an invalid composer.json (#9986)

2.1.3

  • Add "symlink" option for "bin-compat" config to force symlinking even on WSL/Windows (#9959)
  • Fixed source binaries not being made executable when symlinks cannot be used (#9961)
  • Fixed more deletion edge cases (#9955, #9956)
  • Fixed dump-autoload command not dispatching scripts anymore, regressed in 2.1.2 (#9954)

2.1.2

  • Added --dev to dump-autoload command to allow force-dumping dev autoload rules even if dev requirements are not present (#9946)
  • Fixed --no-scripts disabling events for plugins too instead of only disabling script handlers, using --no-plugins is the way to disable plugins (#9942)
  • Fixed handling of deletions during package installs on some filesystems (#9945, #9947)
  • Fixed undefined array access when using @php <absolute path> in a script handler (#9943)
  • Fixed usage of InstalledVersions when loaded from composer/composer installed as a dependency and runtime Composer is v1 (#9937)

2.1.1

  • Fixed regression in autoload generation when --no-scripts is used (#9935)
  • Fixed outdated color legend to have the right color in the right place (#9939)
  • Fixed PCRE bug causing a previously valid pattern to fail to match (#9941)
  • Fixed JsonFile::validateSchema regression when used as a library to validate custom schema files (#9938)

2.1.0

  • Bumped composer-runtime-api and composer-plugin-api to 2.1.0
  • UX Change: The default install method for packages is now always dist/zip, even for dev packages, added --prefer-install=auto if you want the old behavior (#9603)
  • UX Change: Packages from path repositories which are symlinked in the vendor dir will always be updated in partial updates to avoid mistakes when the original composer.json changes but the symlinked package is not explicitly updated (#9765)
  • Added reinstall command that takes one or more package names, including wildcard (*) support, and removes then reinstalls them in the exact same version they had (#9915)
  • Added support for parallel package installs on Windows via 7-Zip if it is installed (#9875)
  • Added detection of invalid composer.lock files that do not fullfil the composer.json requirements to validate command (#9899)
  • Added InstalledVersions::getInstalledPackagesByType(string $type) to retrieve installed plugins for example, read more (#9699)
  • Added InstalledVersions::getInstalledPath(string $packageName) to retrieve the install path of a given package, read more (#9699)
  • Added flag to InstalledVersions::isInstalled() to allow excluding dev requirements from that check (#9682)
  • Added support for PHP 8.1 enums in autoloader / classmap generation (#9670)
  • Added support for using @php binary-name foo in scripts to refer to a binary without using its full path, but forcing to use the same PHP version as Composer used (#9726)
  • Added --format=json support to the fund command (#9678)
  • Added --format=json support to the search command (#9747)
  • Added COMPOSER_DEV_MODE env var definition within the run-script command for compatibility (#9793)
  • Added async uninstall of packages (#9618)
  • Added color legend to outdated and show --latest commands (#9716)
  • Added secure-svn-domains config option to mark secure svn:// hostnames and suppress warnings without disabling secure-http (#9872)
  • Added gitlab-protocol config option to allow forcing git or http URLs for all gitlab repos loaded inline, instead of the default of git for private and http for public (#9401)
  • Added generation of autoload rules in init command (#9829)
  • Added source/dist validation in validate command

... (truncated)

Changelog

Sourced from composer/composer's changelog.

[2.1.4] 2021-07-22

  • Fixed PHP 8.1 deprecation warnings (#10008)
  • Fixed support for working within UNC/WSL paths on Windows (#9993)
  • Fixed 7-zip support to also be looked up on Linux/macOS as 7z or 7zz (#9951)
  • Fixed repositories' only/exclude properties to avoid matching names as sub-strings of full package names (#10001)
  • Fixed open_basedir regression from #9855
  • Fixed schema errors being reported incorrectly in some conditions (#9986)
  • Fixed archive command not working with async archive extraction
  • Fixed init command being able to generate an invalid composer.json (#9986)

[2.1.3] 2021-06-09

  • Add "symlink" option for "bin-compat" config to force symlinking even on WSL/Windows (#9959)
  • Fixed source binaries not being made executable when symlinks cannot be used (#9961)
  • Fixed more deletion edge cases (#9955, #9956)
  • Fixed dump-autoload command not dispatching scripts anymore, regressed in 2.1.2 (#9954)

[2.1.2] 2021-06-07

  • Added --dev to dump-autoload command to allow force-dumping dev autoload rules even if dev requirements are not present (#9946)
  • Fixed --no-scripts disabling events for plugins too instead of only disabling script handlers, using --no-plugins is the way to disable plugins (#9942)
  • Fixed handling of deletions during package installs on some filesystems (#9945, #9947)
  • Fixed undefined array access when using "@​php " in a script handler (#9943)
  • Fixed usage of InstalledVersions when loaded from composer/composer installed as a dependency and runtime Composer is v1 (#9937)

[2.1.1] 2021-06-04

  • Fixed regression in autoload generation when --no-scripts is used (#9935)
  • Fixed outdated color legend to have the right color in the right place (#9939)
  • Fixed PCRE bug causing a previously valid pattern to fail to match (#9941)
  • Fixed JsonFile::validateSchema regression when used as a library to validate custom schema files (#9938)

[2.1.0] 2021-06-03

  • Fixed PHP 8.1 deprecation warning (#9932)
  • Fixed env var handling when variables_order includes E and symfony/console 3.3.15+ is in use (#9930)

[2.1.0-RC1] 2021-06-02

  • Bumped composer-runtime-api and composer-plugin-api to 2.1.0
  • UX Change: The default install method for packages is now always dist/zip, even for dev packages, added --prefer-install=auto if you want the old behavior (#9603)
  • UX Change: Packages from path repositories which are symlinked in the vendor dir will always be updated in partial updates to avoid mistakes when the original composer.json changes but the symlinked package is not explicitly updated (#9765)
  • Added reinstall command that takes one or more package names, including wildcard (*) support, and removes then reinstalls them in the exact same version they had (#9915)
  • Added support for parallel package installs on Windows via 7-Zip if it is installed (#9875)
  • Added detection of invalid composer.lock files that do not fullfil the composer.json requirements to validate command (#9899)
  • Added InstalledVersions::getInstalledPackagesByType(string $type) to retrieve installed plugins for example, read more (#9699)
  • Added InstalledVersions::getInstalledPath(string $packageName) to retrieve the install path of a given package, read more (#9699)
  • Added flag to InstalledVersions::isInstalled() to allow excluding dev requirements from that check (#9682)
  • Added support for PHP 8.1 enums in autoloader / classmap generation (#9670)

... (truncated)

Commits
  • 5701b38 Release 2.1.4
  • a5ee226 Update changelog
  • 2f83338 Fix hopefully last php 8.1 deprecation warnings
  • 24f5e54 Fix only/exclude to avoid matching names as sub-strings of full package names...
  • 29a52ff Register ErrorHandler early to catch deprecation notices while the Applicatio...
  • 5413fae Merge pull request #10016 from tdutrion/patch-1
  • 2be03f0 More fixes for php8.1 deprecations
  • 82a7c52 Highlight the proprietary license trick
  • a7efb27 More php8.1 deprecation fixes, refs #10008
  • 47cf602 Fix more PHP 8.1 deprecations, refs #10008
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump composer/composer from 2.0.13 to 2.1.4
7e795a6 
Bumps [composer/composer](https://github.com/composer/composer) from 2.0.13 to 2.1.4.
- [Release notes](https://github.com/composer/composer/releases)
- [Changelog](https://github.com/composer/composer/blob/master/CHANGELOG.md)
- [Commits](composer/composer@2.0.13...2.1.4)

---
updated-dependencies:
- dependency-name: composer/composer
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jul 22, 2021
@dependabot dependabot bot mentioned this pull request Jul 22, 2021
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Jul 23, 2021

Superseded by #462.

@dependabot dependabot bot closed this Jul 23, 2021
@dependabot dependabot bot deleted the dependabot/composer/composer/composer-2.1.4 branch July 23, 2021 15:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants