Changelog
*Sourced from [symfony/http-foundation's changelog](https://github.com/symfony/http-foundation/blob/master/CHANGELOG.md).*
> CHANGELOG
> =========
>
> 5.0.0
> -----
>
> * made `Cookie` auto-secure and lax by default
> * removed classes in the `MimeType` namespace, use the Symfony Mime component instead
> * removed method `UploadedFile::getClientSize()` and the related constructor argument
> * made `Request::getSession()` throw if the session has not been set before
> * removed `Response::HTTP_RESERVED_FOR_WEBDAV_ADVANCED_COLLECTIONS_EXPIRED_PROPOSAL`
> * passing a null url when instantiating a `RedirectResponse` is not allowed
>
> 4.4.0
> -----
>
> * passing arguments to `Request::isMethodSafe()` is deprecated.
> * `ApacheRequest` is deprecated, use the `Request` class instead.
> * passing a third argument to `HeaderBag::get()` is deprecated, use method `all()` instead
> * [BC BREAK] `PdoSessionHandler` with MySQL changed the type of the lifetime column,
> make sure to run `ALTER TABLE sessions MODIFY sess_lifetime INTEGER UNSIGNED NOT NULL` to
> update your database.
> * `PdoSessionHandler` now precalculates the expiry timestamp in the lifetime column,
> make sure to run `CREATE INDEX EXPIRY ON sessions (sess_lifetime)` to update your database
> to speed up garbage collection of expired sessions.
> * added `SessionHandlerFactory` to create session handlers with a DSN
> * added `IpUtils::anonymize()` to help with GDPR compliance.
>
> 4.3.0
> -----
>
> * added PHPUnit constraints: `RequestAttributeValueSame`, `ResponseCookieValueSame`, `ResponseHasCookie`,
> `ResponseHasHeader`, `ResponseHeaderSame`, `ResponseIsRedirected`, `ResponseIsSuccessful`, and `ResponseStatusCodeSame`
> * deprecated `MimeTypeGuesserInterface` and `ExtensionGuesserInterface` in favor of `Symfony\Component\Mime\MimeTypesInterface`.
> * deprecated `MimeType` and `MimeTypeExtensionGuesser` in favor of `Symfony\Component\Mime\MimeTypes`.
> * deprecated `FileBinaryMimeTypeGuesser` in favor of `Symfony\Component\Mime\FileBinaryMimeTypeGuesser`.
> * deprecated `FileinfoMimeTypeGuesser` in favor of `Symfony\Component\Mime\FileinfoMimeTypeGuesser`.
> * added `UrlHelper` that allows to get an absolute URL and a relative path for a given path
>
> 4.2.0
> -----
>
> * the default value of the "$secure" and "$samesite" arguments of Cookie's constructor
> will respectively change from "false" to "null" and from "null" to "lax" in Symfony
> 5.0, you should define their values explicitly or use "Cookie::create()" instead.
> * added `matchPort()` in RequestMatcher
>
> 4.1.3
> -----
>
> ... (truncated)
Commits
- [`d2d0cfe`](https://github.com/symfony/http-foundation/commit/d2d0cfe8e319d9df44c4cca570710fcf221d4593) [HttpFoundation] Fixed typo
- [`f7efd0b`](https://github.com/symfony/http-foundation/commit/f7efd0b387b7bdbfe0fd1e38fe6b7d4a812b4e39) Simpler example for Apache basic auth workaround
- [`ef5fed4`](https://github.com/symfony/http-foundation/commit/ef5fed4469fb079c0b188ab0401cd1b28752865b) [HttpFoundation] Allow redirecting to URLs that contain a semicolon
- [`c9425ba`](https://github.com/symfony/http-foundation/commit/c9425bae96ae95449d59f8286529cf144bb228ab) Fix MySQL column type definition.
- [`9e4b3ac`](https://github.com/symfony/http-foundation/commit/9e4b3ac8fa3348b4811674d23de32d201de225ce) [HttpFoundation] fix guessing mime-types of files with leading dash
- [`a5d46a3`](https://github.com/symfony/http-foundation/commit/a5d46a33e8649ba802cebe520d188b04385572a2) Fix MockFileSessionStorageTest::sessionDir being used after it's unset
- [`7b4626a`](https://github.com/symfony/http-foundation/commit/7b4626ab40d8562707e6d1c9a6fab977a86c2037) Remove unused local variables in tests
- [`4db558c`](https://github.com/symfony/http-foundation/commit/4db558c7c6777aac02293efbfe7c7c5d4c1385c3) Add plus character `+` to legal mime subtype
- [`233f40c`](https://github.com/symfony/http-foundation/commit/233f40cbebd595ffd91ddf291355f8a930a13777) [HttpFoundation] Check if data passed to SessionBagProxy::initialize is an array
- [`35ffbbf`](https://github.com/symfony/http-foundation/commit/35ffbbfa73e46e28a9433692cd6c404de70e6c4c) [HttpFoundation] allow additinal characters in not raw cookies
- Additional commits viewable in [compare view](https://github.com/symfony/http-foundation/compare/v3.2.3...v3.4.36)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/opengovfoundation/madison/network/alerts).
Bumps symfony/http-foundation from 3.2.3 to 3.4.36.
Changelog
*Sourced from [symfony/http-foundation's changelog](https://github.com/symfony/http-foundation/blob/master/CHANGELOG.md).* > CHANGELOG > ========= > > 5.0.0 > ----- > > * made `Cookie` auto-secure and lax by default > * removed classes in the `MimeType` namespace, use the Symfony Mime component instead > * removed method `UploadedFile::getClientSize()` and the related constructor argument > * made `Request::getSession()` throw if the session has not been set before > * removed `Response::HTTP_RESERVED_FOR_WEBDAV_ADVANCED_COLLECTIONS_EXPIRED_PROPOSAL` > * passing a null url when instantiating a `RedirectResponse` is not allowed > > 4.4.0 > ----- > > * passing arguments to `Request::isMethodSafe()` is deprecated. > * `ApacheRequest` is deprecated, use the `Request` class instead. > * passing a third argument to `HeaderBag::get()` is deprecated, use method `all()` instead > * [BC BREAK] `PdoSessionHandler` with MySQL changed the type of the lifetime column, > make sure to run `ALTER TABLE sessions MODIFY sess_lifetime INTEGER UNSIGNED NOT NULL` to > update your database. > * `PdoSessionHandler` now precalculates the expiry timestamp in the lifetime column, > make sure to run `CREATE INDEX EXPIRY ON sessions (sess_lifetime)` to update your database > to speed up garbage collection of expired sessions. > * added `SessionHandlerFactory` to create session handlers with a DSN > * added `IpUtils::anonymize()` to help with GDPR compliance. > > 4.3.0 > ----- > > * added PHPUnit constraints: `RequestAttributeValueSame`, `ResponseCookieValueSame`, `ResponseHasCookie`, > `ResponseHasHeader`, `ResponseHeaderSame`, `ResponseIsRedirected`, `ResponseIsSuccessful`, and `ResponseStatusCodeSame` > * deprecated `MimeTypeGuesserInterface` and `ExtensionGuesserInterface` in favor of `Symfony\Component\Mime\MimeTypesInterface`. > * deprecated `MimeType` and `MimeTypeExtensionGuesser` in favor of `Symfony\Component\Mime\MimeTypes`. > * deprecated `FileBinaryMimeTypeGuesser` in favor of `Symfony\Component\Mime\FileBinaryMimeTypeGuesser`. > * deprecated `FileinfoMimeTypeGuesser` in favor of `Symfony\Component\Mime\FileinfoMimeTypeGuesser`. > * added `UrlHelper` that allows to get an absolute URL and a relative path for a given path > > 4.2.0 > ----- > > * the default value of the "$secure" and "$samesite" arguments of Cookie's constructor > will respectively change from "false" to "null" and from "null" to "lax" in Symfony > 5.0, you should define their values explicitly or use "Cookie::create()" instead. > * added `matchPort()` in RequestMatcher > > 4.1.3 > ----- > > ... (truncated)Commits
- [`d2d0cfe`](https://github.com/symfony/http-foundation/commit/d2d0cfe8e319d9df44c4cca570710fcf221d4593) [HttpFoundation] Fixed typo - [`f7efd0b`](https://github.com/symfony/http-foundation/commit/f7efd0b387b7bdbfe0fd1e38fe6b7d4a812b4e39) Simpler example for Apache basic auth workaround - [`ef5fed4`](https://github.com/symfony/http-foundation/commit/ef5fed4469fb079c0b188ab0401cd1b28752865b) [HttpFoundation] Allow redirecting to URLs that contain a semicolon - [`c9425ba`](https://github.com/symfony/http-foundation/commit/c9425bae96ae95449d59f8286529cf144bb228ab) Fix MySQL column type definition. - [`9e4b3ac`](https://github.com/symfony/http-foundation/commit/9e4b3ac8fa3348b4811674d23de32d201de225ce) [HttpFoundation] fix guessing mime-types of files with leading dash - [`a5d46a3`](https://github.com/symfony/http-foundation/commit/a5d46a33e8649ba802cebe520d188b04385572a2) Fix MockFileSessionStorageTest::sessionDir being used after it's unset - [`7b4626a`](https://github.com/symfony/http-foundation/commit/7b4626ab40d8562707e6d1c9a6fab977a86c2037) Remove unused local variables in tests - [`4db558c`](https://github.com/symfony/http-foundation/commit/4db558c7c6777aac02293efbfe7c7c5d4c1385c3) Add plus character `+` to legal mime subtype - [`233f40c`](https://github.com/symfony/http-foundation/commit/233f40cbebd595ffd91ddf291355f8a930a13777) [HttpFoundation] Check if data passed to SessionBagProxy::initialize is an array - [`35ffbbf`](https://github.com/symfony/http-foundation/commit/35ffbbfa73e46e28a9433692cd6c404de70e6c4c) [HttpFoundation] allow additinal characters in not raw cookies - Additional commits viewable in [compare view](https://github.com/symfony/http-foundation/compare/v3.2.3...v3.4.36)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/opengovfoundation/madison/network/alerts).