netliferesearch / craft-starter

Good defaults for Craft CMS projects
MIT License
22 stars 5 forks source link

Bump craftcms/cms from 4.2.0.2 to 4.2.1 #123

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 2 years ago

Bumps craftcms/cms from 4.2.0.2 to 4.2.1.

Changelog

Sourced from craftcms/cms's changelog.

4.2.1 - 2022-08-09

Added

  • Added the project-config/export command. (#11733)
  • Added craft\config\GeneralConfig::getRememberedUserSessionDuration().
  • Added craft\helpers\DateTimeHelper::toDateInterval().

Changed

  • “Related To” condition rules are now available for conditions that are stored in the project config. (#11740)
  • Element index filters are now managed for each site and source, rather than just for each source. (#11719)
  • craft\config\DbConfig::dsn() now parses the DSN string and populates the other DSN-settable config properties.
  • craft\helpers\DateTimeHelper::humanDuration() no longer returns the number of weeks, unless the number of days is divisible by 7. (#11594)
  • craft\helpers\DateTimeHelper::humanDuration() now accepts date interval strings to be passed in.
  • craft\helpers\Db::url2config() now returns driver, server, port, and database keys, when possible. (#11735)
  • craft\services\Assets::getImagePreviewUrl() now throws a yii\base\NotSupportedException if a preview URL could not be generated for the asset, rather than causing a PHP error.

Deprecated

  • Deprecated craft\helpers\DateTimeHelper::secondsToInterval(). toDateInterval() should be used instead.

Fixed

  • Fixed a bug where database connections would always use port 3306 by default if craft\config\DbConfig had been configured via fluent methods, even for PostgreSQL.
  • Fixed a bug where system messages provided by Yii weren’t getting translated in some cases. (#11712)
  • Fixed a bug where the “Keep me signed in” checkbox label wasn’t always accurately representing the rememberedUserSessionDuration config setting. (#11594)
  • Fixed a bug where the Craft.cp.setSiteId() JavaScript method wasn’t updating Craft.siteId, or the base URLs used by Craft.getActionUrl(), Craft.getCpUrl(), and Craft.getUrl().
  • Fixed an error that occurred when removing a Single section from the primary site, if it contained any Matrix blocks. (#11669)
  • Fixed a bug where Matrix sub-fields weren’t showing their validation errors when autosaveDrafts was false. (#11731)
  • Fixed a bug where saving an element with invalid field values could result in the invalid values being forgotten, rather than re-validated. (#11731)
  • Fixed a bug where the database connection would be misconfigured if the url connection setting was used. (#11735)
  • Fixed a bug where the element index filter HUDs weren’t always visually aligned with the search input. (#11739)
  • Fixed a bug where it wasn’t possible to preview or edit image assets if their filesystem and transform filesystem didn’t have public URLs. (#11686, #11687)
  • Fixed a bug where not all project config changes would be applied if a site was deleted. (#9567)
  • Fixed a bug where $ characters in database connection passwords weren’t being escaped property when backing up/restoring the database. (#11750)

Security

  • Fixed XSS vulnerabilities.
Commits


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/netliferesearch/craft-starter/network/alerts).
dependabot[bot] commented 1 year ago

Superseded by #128.