Jordi Boggiano
a02802b109
Warn 1.x users when a package is not found that it may be due to our deprecation policy
3 years ago
Jordi Boggiano
083b73515d
Merge pull request from GHSA-h5h8-pc6h-jvvx
...
* Fix external process calls to avoid user input being able to pass extra parameters
* Tweak some fixes
3 years ago
Jordi Boggiano
96acad1e45
Update github token pattern to match their latest updates
3 years ago
Jordi Boggiano
54889ca109
Document GH token usage and also make sure we redact them in Process debug output, refs #9757
3 years ago
Ayesh Karunaratne
dc83ba93f3
Update GitHub token pattern
...
GitHub is updating the format of auth tokens from `a-z0-9` to `A-Za-z0-9` ([notice](https://github.blog/changelog/2021-03-04-authentication-token-format-updates/ )).
I'm not sure why `.` is allowed, but I dare not to remove it. In this PR, the token validation regex is updated to allow `A-Za-z0-9` instead of the current all lower-case `a-z` and disallowed `_`.
3 years ago
Jordi Boggiano
abcf9e993b
Fix processes silently ignoring the CWD when it does not exist, refs #9694
3 years ago
Jordi Boggiano
37c5e9961c
Merge remote-tracking branch 'nicolas-grekas/path-version' into 1.10
3 years ago
Jordi Boggiano
92313447d6
Filter out exclude-from-classmap rules to avoid generating very long regexes, fixes #9487
3 years ago
Nicolas Grekas
725b33ee5a
Handle "versions" option in PathRepository, remove support for "branch-version"
3 years ago
Nicolas Grekas
079e501ac8
Revert "Merge pull request #9273 from nicolas-grekas/dev-version"
...
This reverts commit d2d606ced2
, reversing
changes made to 4a8dbcd145
.
3 years ago
Jordi Boggiano
2cb9630320
Fix $_SERVER var not being updated when using putenv, refs b80038804f
and fixes #9372
3 years ago
Jordi Boggiano
f25271ee22
Add missing file to v1 phar
4 years ago
Fabien Villepinte
4e8ca92b6f
Fix error with binaries in PHP8
4 years ago
Jordi Boggiano
444b91a3ce
Add docs, refs #9422
4 years ago
Marco Sirabella
7f936d7dbc
Ignore failures on preg_match for user supplied regex
...
Fixes #7440
See: https://stackoverflow.com/a/12941133/6381767
4 years ago
Jordi Boggiano
78797df5f8
Fix bitbucket handling, fixes #9369
4 years ago
Jordi Boggiano
04e5d725f4
Add docs
4 years ago
Jordi Boggiano
8925b4f596
Attempt fixing handling of root aliases when composer 1 reads composer 2 lock files, fixes #9337
4 years ago
Jordi Boggiano
25496c199d
Update link to composer 2 release notes
4 years ago
Jordi Boggiano
28c7e38411
Merge remote-tracking branch 'stof/fix_why_not' into 1.10
4 years ago
Nils Adermann
e868996bdd
Validate: Warn about providing or replacing packages you require
4 years ago
Christophe Coevoet
3dd7e829b9
Fix support of provided packages in the why-not command
...
The version provided by such a rule is defined by the constraint of the
rule, not by the package version.
4 years ago
Nils Adermann
dacc21e54f
Merge pull request #9158 from infabo/patch-1
...
Fix symlink check
4 years ago
terry.kern
0466add822
Also use channel string for update message
...
https://github.com/composer/composer/pull/9305#issuecomment-714381153
4 years ago
TerryKern
e68b52697b
Improve readability of version info message
...
Instead of:
> You are already using composer version 1.10.15 (1 channel).
it shows:
> You are already using composer version 1.10.15 (1.x channel).
4 years ago
Ingo Fabbri
750172dc4c
Fix symlink check
...
Given you have a symlink in one of your path repositories and mirroring-strategy enabled.
```bash
lrwxrwxrwx 1 inf inf 8 27. Aug 17:41 Create.html -> New.html
-rw-r--r-- 1 inf inf 750 27. Aug 17:24 Edit.html
-rw-r--r-- 1 inf inf 0 27. Aug 17:24 List.html
-rw-r--r-- 1 inf inf 5064 27. Aug 17:24 New.html
-rw-r--r-- 1 inf inf 716 27. Aug 17:24 Show.html
```
`$file->getLinkTarget()` just returns a relative path in this example. It does not return an absolute normalized path.
`$sources` is always a normalized path.
`strpos` can never be `0`.
Use `$file->getRealPath()` to fix the strpos-check.
4 years ago
Nicolas Grekas
4feed8b85c
Fix parsing "branch-version"
4 years ago
Jordi Boggiano
d2d606ced2
Merge pull request #9273 from nicolas-grekas/dev-version
...
Add support for "extra.branch-version"
4 years ago
Nicolas Grekas
893fbfcb89
Add support for "extra.branch-version"
4 years ago
Jordi Boggiano
bc1cb1636d
Remove dead code, fixes #9277
4 years ago
Jordi Boggiano
6bf136489f
Ignore the COMPOSER env var when executing global scope commands, fixes #9259
4 years ago
Jordi Boggiano
159bb84fa6
Allow running the config command to disable tls even if openssl is not present, fixes #9198
4 years ago
Jordi Boggiano
28fe3baf9c
Disable secure-http automatically when disable-tls is enabled, fixes #9235
4 years ago
Jordi Boggiano
791bbc80a4
Backport some fixes from 2.0, and fix sorting to sort remote branches after local ones, refs #9270
4 years ago
Jordi Boggiano
6698e0bafa
Merge remote-tracking branch 'naderman/version-guess-remotes' into 1.10
4 years ago
Nils Adermann
b3c465d55a
VersionGuesser: local branches still need to be considered
4 years ago
Nils Adermann
ad643d9957
VersionGuesser: Analyze remote origin and upstream branches too
4 years ago
Grégoire Pineau
bfb4abfb56
Fixed description of StatusCommand: It do list all changes in vendor, not only for "source" ones
...
I tested it, and even with "dist" packages, the status command is able to find modified vendor
(And that's amazing, thanks)
4 years ago
Jordi Boggiano
d6b39b4c55
Fix syntax error & improve handling
4 years ago
Christophe Coevoet
bcd8a73e8c
Fix support for running diagnose without openssl
...
The diagnose command already warns when openssl is not available. But the command was failing later when displaying the Openssl version.
4 years ago
Jordi Boggiano
4a02768591
Fail hard if an invalid root alias is detected
4 years ago
Jordi Boggiano
e6b45e853a
Fix status command handling of symlinks, and especially broken ones, fixes #9169
4 years ago
Alexander M. Turek
fc961dce70
Call call_user_func_array() with a numeric arguments array.
4 years ago
Stephan
773635e355
ComposerRepository: avoid notice if includes do not provide a sha1
4 years ago
Jordi Boggiano
b847c4dc3a
Validate licenses correctly even when proprietary is combined with some other license, fixes #9144
4 years ago
johnstevenson
3be62a9fda
Fix openssl_free_key deprecation notice in PHP 8
4 years ago
Jordi Boggiano
00f712a7c4
Revert "Allow specifying a version requirement for CLDR"
4 years ago
Jordi Boggiano
387e828993
Promote next major version when running stable self-update, and prevent self-update from automatically upgrading to the next major release
4 years ago
Jordi Boggiano
5bd61ac55c
Cache versions data to avoid redownloading it twice during self-update
4 years ago
Jordi Boggiano
7028d0ce27
Merge pull request #9077 from glaubinix/f/api-data-detection
...
Driver: only cache composer.json file without API data to disk
4 years ago