Skip to content

Bump composer/composer from 2.0.13 to 2.2.6#487

Closed
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/composer/composer/composer-2.2.6
Closed

Bump composer/composer from 2.0.13 to 2.2.6#487
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/composer/composer/composer-2.2.6

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 7, 2022

Bumps composer/composer from 2.0.13 to 2.2.6.

Release notes

Sourced from composer/composer's releases.

2.2.6

  • BC Break: due to an oversight, the COMPOSER_BIN_DIR env var for binaries added in Composer 2.2.2 had to be renamed to COMPOSER_RUNTIME_BIN_DIR (#10512)
  • Fixed enum parsing in classmap generation with syntax like enum foo:string without space after : (#10498)
  • Fixed package search not urlencoding the input (#10500)
  • Fixed reinstall command not firing pre-install-cmd/post-install-cmd events (#10514)
  • Fixed edge case in path repositories where a symlink: true option would be ignored on old Windows and old PHP combos (#10482)
  • Fixed test suite compatibility with latest symfony/console releases (#10499)
  • Fixed some error reporting edge cases (#10484, #10451, #10493)

2.2.5

  • Disabled composer/package-versions-deprecated by default as it can function using Composer\InstalledVersions at runtime (#10458)
  • Fixed artifact repositories crashing if a phar file was present in the directory (#10406)
  • Fixed binary proxy issue on PHP <8 when fseek is used on the proxied binary path (#10468)
  • Fixed handling of non-string versions in package repositories metadata (#10470)

2.2.4

  • Fixed handling of process timeout when running async processes during installation
  • Fixed GitLab API handling when projects have a repository disabled (#10440)
  • Fixed reading of environment variables (e.g. APPDATA) containing unicode characters to workaround a PHP bug on Windows (#10434)
  • Fixed partial update issues with path repos missing if a path repo is required by a path repo (#10431)
  • Fixed support for sourcing binaries via the new bin proxies (#10389)
  • Fixed messaging when GitHub tokens need SSO authorization (#10432)

2.2.3

  • Fixed issue with PHPUnit and process isolation now including PHPUnit <6.5 (#10387)
  • Fixed interoperability issue with laminas/laminas-zendframework-bridge and Composer 2.2 (#10401)
  • Fixed binary proxies for shell scripts to work correctly when they are symlinked (Fix builds jakzal/phpqa#336)
  • Fixed overly greedy pool optimization in cases where a locked package is not required by anything anymore in a partial update (#10405)

2.2.2

  • Added COMPOSER_BIN_DIR env var and _composer_bin_dir global containing the path to the bin-dir for binaries. Packages relying on finding the bin dir with $BASH_SOURCES[0] will need to update their binaries (#10402)
  • Fixed issue when new binary proxies are combined with PHPUnit and process isolation (#10387)
  • Fixed deprecation warnings when using Symfony 5.4+ and requiring composer/composer itself (#10404)
  • Fixed UX of plugin warnings (#10381)

2.2.1

  • Fixed plugin autoloading including files autoload rules from the root package (#10382)
  • Fixed issue parsing php files with unterminated comments found inside backticks (#10385)

2.2.0

Read the Composer 2.2 Release Announcement for more details on the release highlights.

Complete Changelog

  • Bumped composer-runtime-api and composer-plugin-api to 2.2.0
  • UX Change: Added allow-plugins config value to enhance security against runtime execution, this will prompt you the first time you use a plugin and may hang pipelines if they aren't using --no-interaction (-n) as they should (#10314)
  • Added an optimization pass to reduce the amount of redundant inspected during resolution, drastically improving memory and CPU usage (#9261, #9620)
  • Added a global $_composer_autoload_path variable containing the path to autoload.php for binaries (#10137)
  • Added wildcard support to --ignore-platform-req (e.g. ext-*) (#10083)
  • Added support for ignoring the upper bound of platform requirements using "name+" notation e.g. using --ignore-platform-req=php+ would allow installing a package requiring php: 8.0.* on PHP 8.1, but not on PHP 7.4. Useful for CI builds of upcoming PHP versions (#10318)

... (truncated)

Changelog

Sourced from composer/composer's changelog.

[2.2.6] 2022-02-04

  • BC Break: due to an oversight, the COMPOSER_BIN_DIR env var for binaries added in Composer 2.2.2 had to be renamed to COMPOSER_RUNTIME_BIN_DIR (#10512)
  • Fixed enum parsing in classmap generation with syntax like enum foo:string without space after : (#10498)
  • Fixed package search not urlencoding the input (#10500)
  • Fixed reinstall command not firing pre-install-cmd/post-install-cmd events (#10514)
  • Fixed edge case in path repositories where a symlink: true option would be ignored on old Windows and old PHP combos (#10482)
  • Fixed test suite compatibility with latest symfony/console releases (#10499)
  • Fixed some error reporting edge cases (#10484, #10451, #10493)

[2.2.5] 2022-01-21

  • Disabled composer/package-versions-deprecated by default as it can function using Composer\InstalledVersions at runtime (#10458)
  • Fixed artifact repositories crashing if a phar file was present in the directory (#10406)
  • Fixed binary proxy issue on PHP <8 when fseek is used on the proxied binary path (#10468)
  • Fixed handling of non-string versions in package repositories metadata (#10470)

[2.2.4] 2022-01-08

  • Fixed handling of process timeout when running async processes during installation
  • Fixed GitLab API handling when projects have a repository disabled (#10440)
  • Fixed reading of environment variables (e.g. APPDATA) containing unicode characters to workaround a PHP bug on Windows (#10434)
  • Fixed partial update issues with path repos missing if a path repo is required by a path repo (#10431)
  • Fixed support for sourcing binaries via the new bin proxies (#10389)
  • Fixed messaging when GitHub tokens need SSO authorization (#10432)

[2.2.3] 2021-12-31

  • Fixed issue with PHPUnit and process isolation now including PHPUnit <6.5 (#10387)
  • Fixed interoperability issue with laminas/laminas-zendframework-bridge and Composer 2.2 (#10401)
  • Fixed binary proxies for shell scripts to work correctly when they are symlinked (Fix builds jakzal/phpqa#336)
  • Fixed overly greedy pool optimization in cases where a locked package is not required by anything anymore in a partial update (#10405)

[2.2.2] 2021-12-29

  • Added COMPOSER_BIN_DIR env var and _composer_bin_dir global containing the path to the bin-dir for binaries. Packages relying on finding the bin dir with $BASH_SOURCES[0] will need to update their binaries (#10402)
  • Fixed issue when new binary proxies are combined with PHPUnit and process isolation (#10387)
  • Fixed deprecation warnings when using Symfony 5.4+ and requiring composer/composer itself (#10404)
  • Fixed UX of plugin warnings (#10381)

[2.2.1] 2021-12-22

  • Fixed plugin autoloading including files autoload rules from the root package (#10382)
  • Fixed issue parsing php files with unterminated comments found inside backticks (#10385)

[2.2.0] 2021-12-22

  • Added support for using dev-main as the default path repo package version if no VCS info is available (#10372)
  • Added --no-scripts as a globally supported flag to all Composer commands to disable scripts execution (#10371)
  • Fixed self-update failing in some edge cases due to loading plugins (#10371)

... (truncated)

Commits
  • ce785a1 Release 2.2.6
  • 809b372 Update changelog for 2.2.6
  • 4f2e2ec Update docs for renamed COMPOSER_RUNTIME_BIN_DIR
  • 335c3c9 Update baseline
  • d124c13 Add hints when the arg of show is not found, fixes #10493
  • ee36c5e Fix error reporting issues when partial updates cannot update due to a symlin...
  • 6c36920 Bump semver
  • 8053d79 Fix reinstall command not firing pre-install-cmd/post-install-cmd events, fix...
  • 88171e4 Remove superfluous arg
  • 39cb505 Fix phpstan warnings
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump composer/composer from 2.0.13 to 2.2.6
caeb359 
Bumps [composer/composer](https://github.com/composer/composer) from 2.0.13 to 2.2.6.
- [Release notes](https://github.com/composer/composer/releases)
- [Changelog](https://github.com/composer/composer/blob/main/CHANGELOG.md)
- [Commits](composer/composer@2.0.13...2.2.6)

---
updated-dependencies:
- dependency-name: composer/composer
  dependency-type: direct:development
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 7, 2022
@dependabot dependabot bot mentioned this pull request Feb 7, 2022
Closed
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Feb 25, 2022

Superseded by #488.

@dependabot dependabot bot closed this Feb 25, 2022
@dependabot dependabot bot deleted the dependabot/composer/composer/composer-2.2.6 branch February 25, 2022 15:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants