Closed sippsolutions closed 3 years ago
@pdohogne-magento please review asap :)
The #24 should also be fine with this PR.
This issue is now blocking certain processes for us now. So I hope this can get reviewed asap.
Just wondering why patch versions were even restricted. That's very concerning since it now blocks us from doing security updates. This PR seems to at least resolve that. :-)
@pdohogne-magento How can we speedup the process here? It's currently blocking several build pipelines in customer projects. It very common that security scans are done in CI pipelines or in git commit hooks. In our case we had to disable security checks due to this issue here.
Composer version 1.10.20 (as defined in dependency) has a security vulnerability.
composer/composer (1.10.20)
This also fixes #23 (#24).