Closed Natshah closed 6 months ago
Drupal 10.2.4 was released on: 6 Mar 2024 by: quietone https://www.drupal.org/project/drupal/releases/10.2.4 Thanks, to the Drupal release and testing teams This is a patch (bugfix) release of Drupal 10 and is ready for use on production sites. Learn more about Drupal 10.
Issue #3421371: Security update composer/composer (CVE-2023-43655) Minimum composer version was changed in Drupal Core to ^2.7
"composer/composer": "^2.7", must do composer self-update and in platform.sh hosted sites .. the default version should be changed to ~2.7.0 - or latest
"composer/composer": "^2.7",
composer self-update
~2.7.0
https://github.com/advisories/GHSA-7c6p-848j-wh5h https://www.cve.org/CVERecord?id=CVE-2024-24821
No response
What in this template can be improved or added as a feature?
Drupal 10.2.4 was released on: 6 Mar 2024 by: quietone https://www.drupal.org/project/drupal/releases/10.2.4 Thanks, to the Drupal release and testing teams This is a patch (bugfix) release of Drupal 10 and is ready for use on production sites. Learn more about Drupal 10.
Issue #3421371: Security update composer/composer (CVE-2023-43655) Minimum composer version was changed in Drupal Core to ^2.7
What exactly should be updated?
"composer/composer": "^2.7",must docomposer self-updateand in platform.sh hosted sites .. the default version should be changed to~2.7.0- or latestHow important is this feature to you?
https://github.com/advisories/GHSA-7c6p-848j-wh5h https://www.cve.org/CVERecord?id=CVE-2024-24821
Additional context
No response