Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update composer/composer requirement from 1.0.*@dev to 1.0.*@dev || 2.0.9 #24

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot-preview[bot]
Copy link

Updates the requirements on composer/composer to permit the latest version.

Release notes

Sourced from composer/composer's releases.

2.0.9

  • Added warning if the curl extension is not enabled as it significantly degrades performance
  • Fixed InstalledVersions to report all packages when several vendor dirs are present in the same runtime
  • Fixed download speed when downloading large files
  • Fixed archive and path repo copies mishandling some .gitignore paths
  • Fixed root package classes not being available to the plugins/scripts during the initial install
  • Fixed cache writes to be atomic and better support multiple Composer processes running in parallel
  • Fixed preg jit issues when config or require modifies large composer.json files
  • Fixed compatibility with envs having open_basedir restrictions
  • Fixed exclude-from-classmap causing regex issues when having too many paths
  • Fixed compatibility issue with Symfony 4/5
  • Several small performance and debug output improvements
Changelog

Sourced from composer/composer's changelog.

[2.0.9] 2021-01-27

  • Added warning if the curl extension is not enabled as it significantly degrades performance
  • Fixed InstalledVersions to report all packages when several vendor dirs are present in the same runtime
  • Fixed download speed when downloading large files
  • Fixed archive and path repo copies mishandling some .gitignore paths
  • Fixed root package classes not being available to the plugins/scripts during the initial install
  • Fixed cache writes to be atomic and better support multiple Composer processes running in parallel
  • Fixed preg jit issues when config or require modifies large composer.json files
  • Fixed compatibility with envs having open_basedir restrictions
  • Fixed exclude-from-classmap causing regex issues when having too many paths
  • Fixed compatibility issue with Symfony 4/5
  • Several small performance and debug output improvements

[2.0.8] 2020-12-03

  • Fixed packages with aliases not matching conflicts which match the alias
  • Fixed invalid reports of uncommitted changes when using non-default remotes in vendor dir
  • Fixed curl error handling edge cases
  • Fixed cached git repositories becoming stale by having a git gc applied to them periodically
  • Fixed issue initializing plugins when using dev packages
  • Fixed update --lock / mirrors failing to update in some edge cases
  • Fixed partial update with --with-dependencies failing in some edge cases with some nonsensical error

[2.0.7] 2020-11-13

  • Fixed detection of TTY mode, made input non-interactive automatically if STDIN is not a TTY
  • Fixed root aliases not being present in lock file if not required by anything else
  • Fixed remove command requiring a lock file to be present
  • Fixed Composer\InstalledVersions to always contain up to date data during installation
  • Fixed status command breaking on slow networks
  • Fixed order of POST_PACKAGE_* events to occur together once all installations of a package batch are done

[2.0.6] 2020-11-07

  • Fixed regression in 2.0.5 dealing with custom installers which do not pass absolute paths

[2.0.5] 2020-11-06

  • Disabled platform-check verification of extensions by default (now defaulting php-only), set platform-check to true if you want a complete check
  • Improved platform-check handling of issue reporting
  • Fixed platform-check to only check non-dev requires even if require-dev dependencies are installed
  • Fixed issues dealing with custom installers which return trailing slashes in getInstallPath (ideally avoid doing this as there might be other issues left)
  • Fixed issues when curl functions are disabled
  • Fixed gitlab-domains/github-domains to make sure if they are overridden the default value remains present
  • Fixed issues removing/upgrading packages from path repositories on Windows
  • Fixed regression in 2.0.4 when handling of [email protected] URLs in vcs repositories
  • Fixed issue running create-project in current directory on Windows

[2.0.4] 2020-10-30

... (truncated)

Commits
  • 591c2c1 Release 2.0.9
  • 0adea1e Update changelog
  • 07b8c23 Merge branch '1.10'
  • 4d2ae78 Update changelog
  • 37c5e99 Merge remote-tracking branch 'nicolas-grekas/path-version' into 1.10
  • 9231344 Filter out exclude-from-classmap rules to avoid generating very long regexes,...
  • bab2107 Update deps
  • 725b33e Handle "versions" option in PathRepository, remove support for "branch-version"
  • 079e501 Revert "Merge pull request #9273 from nicolas-grekas/dev-version"
  • 5137194 Add comment about not removing the static $installed data, refs #9635
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

Updates the requirements on [composer/composer](https://github.com/composer/composer) to permit the latest version.
- [Release notes](https://github.com/composer/composer/releases)
- [Changelog](https://github.com/composer/composer/blob/master/CHANGELOG.md)
- [Commits](composer/composer@1.0.0...2.0.9)

Signed-off-by: dependabot-preview[bot] <[email protected]>
@dependabot-preview dependabot-preview bot added the dependencies Pull requests that update a dependency file label Jan 28, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants