Bump the composer group across 1 directory with 4 updates#2
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump the composer group across 1 directory with 4 updates#2dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Conversation
Bumps the composer group with 1 update in the / directory: [laravel/framework](https://github.com/laravel/framework). Updates `laravel/framework` from 13.9.0 to 13.12.0 - [Release notes](https://github.com/laravel/framework/releases) - [Changelog](https://github.com/laravel/framework/blob/13.x/CHANGELOG.md) - [Commits](laravel/framework@v13.9.0...v13.12.0) Updates `guzzlehttp/psr7` from 2.9.0 to 2.12.1 - [Release notes](https://github.com/guzzle/psr7/releases) - [Changelog](https://github.com/guzzle/psr7/blob/2.12/CHANGELOG.md) - [Commits](guzzle/psr7@2.9.0...2.12.1) Updates `symfony/http-foundation` from 8.0.8 to 7.4.13 - [Release notes](https://github.com/symfony/http-foundation/releases) - [Changelog](https://github.com/symfony/http-foundation/blob/8.2/CHANGELOG.md) - [Commits](symfony/http-foundation@v8.0.8...v7.4.13) Updates `symfony/routing` from 8.0.9 to 7.4.13 - [Release notes](https://github.com/symfony/routing/releases) - [Changelog](https://github.com/symfony/routing/blob/8.2/CHANGELOG.md) - [Commits](symfony/routing@v8.0.9...v7.4.13) --- updated-dependencies: - dependency-name: laravel/framework dependency-version: 13.12.0 dependency-type: direct:production dependency-group: composer - dependency-name: guzzlehttp/psr7 dependency-version: 2.12.1 dependency-type: indirect dependency-group: composer - dependency-name: symfony/http-foundation dependency-version: 7.4.13 dependency-type: indirect dependency-group: composer - dependency-name: symfony/routing dependency-version: 7.4.13 dependency-type: indirect dependency-group: composer ... Signed-off-by: dependabot[bot] <support@github.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Bumps the composer group with 1 update in the / directory: laravel/framework.
Updates
laravel/frameworkfrom 13.9.0 to 13.12.0Release notes
Sourced from laravel/framework's releases.
... (truncated)
Changelog
Sourced from laravel/framework's changelog.
... (truncated)
Commits
6ac27a7Update version to v13.12.05d0dd30update commentfae546e[13.x] Throw ManagedQueueNotFoundException when a managed queue is missing (#...2627847use display name4db3505Fix #60278 - View\Factory::flushComponents() doesn't reset $slots / $slotStac...a67650eApply fixes from StyleCIee6949dAdd Client\Request::uri() (#60282)566f2c4Supports using URI-based connection for SQLite usingfile:prefix (#60261)7104220[13.x] Fix incorrect@returntypes in Number::spell(), ordinal(), and spellOr...39cb3f2Guard base_path() call in SQLiteConnector for standalone usage (#60260) (#60266)Updates
guzzlehttp/psr7from 2.9.0 to 2.12.1Release notes
Sourced from guzzlehttp/psr7's releases.
... (truncated)
Changelog
Sourced from guzzlehttp/psr7's changelog.
... (truncated)
Commits
172ef2fRelease 2.12.1f3f94b4Mitigate CRLF Injection in HTTP Start-Line Serialization (#798)9b38012Release 2.12.0fffbe3dDeprecate non-string scalar stream bodies and query values (#790)6a37393Deprecate non-finite float values (#788)640e289Release 2.11.10220ac9Fix non-finite float coercion warnings on PHP 8.5 (#787)bbb5e61Release 2.11.0aac7d94Restore copyToStream throws annotation (#781)d6f9070Fix copyToStream short writes (#772)Updates
symfony/http-foundationfrom 8.0.8 to 7.4.13Commits
bc354f4Merge branch '6.4' into 7.448d76c2security #cve-2026-48736 [HttpFoundation] Block IPv6 transition forms in IpUt...fda5ebeMerge branch '6.4' into 7.45979ae8Ignore Doctrine DBAL deprecations that can't be worked around10d5daa[HttpFoundation] Fix tests for PHP 8.6: session.cookie_samesite=Lax3ebc78a[HttpFoundation] Block IPv6 transition forms in IpUtils::PRIVATE_SUBNETS051a962Merge branch '6.4' into 7.45402ad1Remove wrong documentationc38f205[7.4] Remove usages of named arguments in testsa762b60Update XSD references in phpunit.xml.dist filesUpdates
symfony/routingfrom 8.0.9 to 7.4.13Commits
3a16217Merge branch '6.4' into 7.4af04c79Merge branch '5.4' into 6.4e6f3f03Fix tests and merge resolution after merging 6.4 into 7.45156fe8Merge branch '6.4' into 7.4be4ce34[Routing][RateLimiter][Mime][Security] Harden __unserialize against __toStrin...f4ca0c5[Routing] Fix dot-segment encoding for chained "../" and "./" in generated URLs3b04a5eMerge branch '6.4' into 7.40cd0d2fMerge branch '5.4' into 6.4275b313[Routing] Fix regex alternation anchoring in UrlGenerator requirement validation4720254Merge branch '7.3' into 7.4Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditionsYou can disable automated security fix PRs for this repo from the Security Alerts page.