Limenius / symfony-react-sandbox

Example of integration with React and Webpack (Webpack Encore) for universal (isomorphic) React rendering, using Limenius/ReactBundle and Limenius/LiformBundle
MIT License
337 stars 77 forks source link

Bump symfony/serializer from 4.3.5 to 4.4.35 #95

Open dependabot[bot] opened 2 years ago

dependabot[bot] commented 2 years ago

Bumps symfony/serializer from 4.3.5 to 4.4.35.

Release notes

Sourced from symfony/serializer's releases.

v4.4.35

Changelog (https://github.com/symfony/serializer/compare/v4.4.34...v4.4.35)

  • no significant changes

v4.4.34

Changelog (https://github.com/symfony/serializer/compare/v4.4.33...v4.4.34)

  • bug #44121 fix support for lazy properties (nicolas-grekas)
  • bug #44111 fix support for unset properties on PHP < 7.4 (nicolas-grekas)

v4.4.33

Changelog (https://github.com/symfony/serializer/compare/v4.4.32...v4.4.33)

  • bug #43205 Fix denormalizing XML array with empty body (4.4) (alexandre-daubois)

v4.4.31

Changelog (https://github.com/symfony/serializer/compare/v4.4.30...v4.4.31)

  • no significant changes

v4.4.27

Changelog (https://github.com/symfony/serializer/compare/v4.4.26...v4.4.27)

  • no significant changes

v4.4.26

Changelog (https://github.com/symfony/serializer/compare/v4.4.25...v4.4.26)

  • bug #41491 Do not allow to denormalize string with spaces only to valid a DateTime object (sidz)

v4.4.25

Changelog (https://github.com/symfony/serializer/compare/v4.4.24...v4.4.25)

  • no significant changes

v4.4.24

Changelog (https://github.com/symfony/serializer/compare/v4.4.23...v4.4.24)

  • bug #41230 Fix deprecations from Doctrine Annotations+Cache (derrabus)

v4.4.22

Changelog (https://github.com/symfony/serializer/compare/v4.4.21...v4.4.22)

  • bug #40522 Allow AbstractNormalizer to use null for non-optional nullable constructor parameters without default value (Pierre Rineau)

v4.4.20

Changelog (https://github.com/symfony/serializer/compare/v4.4.19...v4.4.20)

  • bug #40316 zero parts can be omitted in date interval input (xabbuh)

... (truncated)

Changelog

Sourced from symfony/serializer's changelog.

CHANGELOG

5.3

  • Add the ability to provide (de)normalization context using metadata (e.g. @Symfony\Component\Serializer\Annotation\Context)
  • Deprecate ArrayDenormalizer::setSerializer(), call setDenormalizer() instead
  • Add normalization formats to UidNormalizer
  • Add CsvEncoder::END_OF_LINE context option
  • Deprecate creating instances of the annotation classes by passing an array of parameters, use named arguments instead

5.2.0

  • added CompiledClassMetadataFactory and ClassMetadataFactoryCompiler for faster metadata loading.
  • added UidNormalizer
  • added FormErrorNormalizer
  • added MimeMessageNormalizer
  • serializer mapping can be configured using php attributes

5.1.0

  • added support for scalar values denormalization
  • added support for \stdClass to ObjectNormalizer
  • added the ability to ignore properties using metadata (e.g. @Symfony\Component\Serializer\Annotation\Ignore)
  • added an option to serialize constraint violations payloads (e.g. severity)

5.0.0

  • throw an exception when creating a Serializer with normalizers which neither implement NormalizerInterface nor DenormalizerInterface
  • throw an exception when creating a Serializer with encoders which neither implement EncoderInterface nor DecoderInterface
  • changed the default value of the CsvEncoder "as_collection" option to true
  • removed AbstractNormalizer::$circularReferenceLimit, AbstractNormalizer::$circularReferenceHandler, AbstractNormalizer::$callbacks, AbstractNormalizer::$ignoredAttributes, AbstractNormalizer::$camelizedAttributes, AbstractNormalizer::setCircularReferenceLimit(), AbstractNormalizer::setCircularReferenceHandler(), AbstractNormalizer::setCallbacks() and AbstractNormalizer::setIgnoredAttributes(), use the default context instead.
  • removed AbstractObjectNormalizer::$maxDepthHandler and AbstractObjectNormalizer::setMaxDepthHandler(), use the default context instead.
  • removed XmlEncoder::setRootNodeName() & XmlEncoder::getRootNodeName(), use the default context instead.
  • removed individual encoders/normalizers options as constructor arguments.
  • removed support for instantiating a DataUriNormalizer with a default MIME type guesser when the symfony/mime component isn't installed.
  • removed the XmlEncoder::TYPE_CASE_ATTRIBUTES constant. Use XmlEncoder::TYPE_CAST_ATTRIBUTES instead.

4.4.0

... (truncated)

Commits
  • 1b2ae02 security #cve-2021-41270 [Serializer] Use single quote to escape formulas (jd...
  • b5704a9 [Serializer] PropertyNormalizer - return unique (i.e. filter duplicate ) attr...
  • 4c12f7d [Serializer] fix support for lazy properties
  • 36b95b0 [Serializer] fix support for unset properties on PHP < 7.4
  • d834b28 Use single quote to escape formulas
  • 5cb0dc3 [Serializer] Fix denormalizing of array with empty body
  • a10b610 [Serializer] Don't pass null to preg_match()
  • 85b67b8 fix intersection types in tests
  • c534a7a Leverage str_contains/str_starts_with
  • a5383c7 minor #41973 Leverage str_ends_with (Tobion)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/Limenius/symfony-react-sandbox/network/alerts).