search

ramsey / conventional-commits

:yo_yo: A PHP library for creating and validating commit messages according to the Conventional Commits specification. Includes a CaptainHook plugin!
MIT License
182 stars 21 forks source link

chore(deps): bump composer/composer from 2.0.2 to 2.0.9 #15

Closed dependabot[bot] closed 3 years ago

dependabot[bot] commented 3 years ago

Bumps composer/composer from 2.0.2 to 2.0.9.

Release notes

Sourced from composer/composer's releases.

2.0.9

  • Added warning if the curl extension is not enabled as it significantly degrades performance
  • Fixed InstalledVersions to report all packages when several vendor dirs are present in the same runtime
  • Fixed download speed when downloading large files
  • Fixed archive and path repo copies mishandling some .gitignore paths
  • Fixed root package classes not being available to the plugins/scripts during the initial install
  • Fixed cache writes to be atomic and better support multiple Composer processes running in parallel
  • Fixed preg jit issues when config or require modifies large composer.json files
  • Fixed compatibility with envs having open_basedir restrictions
  • Fixed exclude-from-classmap causing regex issues when having too many paths
  • Fixed compatibility issue with Symfony 4/5
  • Several small performance and debug output improvements

2.0.8

  • Fixed packages with aliases not matching conflicts which match the alias
  • Fixed invalid reports of uncommitted changes when using non-default remotes in vendor dir
  • Fixed curl error handling edge cases
  • Fixed cached git repositories becoming stale by having a git gc applied to them periodically
  • Fixed issue initializing plugins when using dev packages
  • Fixed update --lock / mirrors failing to update in some edge cases
  • Fixed partial update with --with-dependencies failing in some edge cases with some nonsensical error

2.0.7

  • Fixed detection of TTY mode, made input non-interactive automatically if STDIN is not a TTY
  • Fixed root aliases not being present in lock file if not required by anything else
  • Fixed remove command requiring a lock file to be present
  • Fixed Composer\InstalledVersions to always contain up to date data during installation
  • Fixed status command breaking on slow networks
  • Fixed order of POST_PACKAGE_* events to occur together once all installations of a package batch are done

2.0.6

  • Fixed regression in 2.0.5 dealing with custom installers which do not pass absolute paths

2.0.5

  • Disabled platform-check verification of extensions by default (now defaulting php-only), set platform-check to true if you want a complete check
  • Improved platform-check handling of issue reporting
  • Fixed platform-check to only check non-dev requires even if require-dev dependencies are installed
  • Fixed issues dealing with custom installers which return trailing slashes in getInstallPath (ideally avoid doing this as there might be other issues left)
  • Fixed issues when curl functions are disabled
  • Fixed gitlab-domains/github-domains to make sure if they are overridden the default value remains present
  • Fixed issues removing/upgrading packages from path repositories on Windows
  • Fixed regression in 2.0.4 when handling of git@bitbucket.org URLs in vcs repositories
  • Fixed issue running create-project in current directory on Windows

2.0.4

  • Fixed check-platform-req command not being clear on what packages are checked, and added a --lock flag to explicitly check the locked packages
  • Fixed config & create-project adding of repositories to make sure they are prepended as order is much more important in Composer 2, also added a --append flag to config to restore the old behavior in the unlikely case this is needed
  • Fixed curl downloader failing on old PHP releases or when using self-signed SSL certificates
  • Fixed Bitbucket API authentication issue

... (truncated)

Changelog

Sourced from composer/composer's changelog.

[2.0.9] 2021-01-27

  • Added warning if the curl extension is not enabled as it significantly degrades performance
  • Fixed InstalledVersions to report all packages when several vendor dirs are present in the same runtime
  • Fixed download speed when downloading large files
  • Fixed archive and path repo copies mishandling some .gitignore paths
  • Fixed root package classes not being available to the plugins/scripts during the initial install
  • Fixed cache writes to be atomic and better support multiple Composer processes running in parallel
  • Fixed preg jit issues when config or require modifies large composer.json files
  • Fixed compatibility with envs having open_basedir restrictions
  • Fixed exclude-from-classmap causing regex issues when having too many paths
  • Fixed compatibility issue with Symfony 4/5
  • Several small performance and debug output improvements

[2.0.8] 2020-12-03

  • Fixed packages with aliases not matching conflicts which match the alias
  • Fixed invalid reports of uncommitted changes when using non-default remotes in vendor dir
  • Fixed curl error handling edge cases
  • Fixed cached git repositories becoming stale by having a git gc applied to them periodically
  • Fixed issue initializing plugins when using dev packages
  • Fixed update --lock / mirrors failing to update in some edge cases
  • Fixed partial update with --with-dependencies failing in some edge cases with some nonsensical error

[2.0.7] 2020-11-13

  • Fixed detection of TTY mode, made input non-interactive automatically if STDIN is not a TTY
  • Fixed root aliases not being present in lock file if not required by anything else
  • Fixed remove command requiring a lock file to be present
  • Fixed Composer\InstalledVersions to always contain up to date data during installation
  • Fixed status command breaking on slow networks
  • Fixed order of POST_PACKAGE_* events to occur together once all installations of a package batch are done

[2.0.6] 2020-11-07

  • Fixed regression in 2.0.5 dealing with custom installers which do not pass absolute paths

[2.0.5] 2020-11-06

  • Disabled platform-check verification of extensions by default (now defaulting php-only), set platform-check to true if you want a complete check
  • Improved platform-check handling of issue reporting
  • Fixed platform-check to only check non-dev requires even if require-dev dependencies are installed
  • Fixed issues dealing with custom installers which return trailing slashes in getInstallPath (ideally avoid doing this as there might be other issues left)
  • Fixed issues when curl functions are disabled
  • Fixed gitlab-domains/github-domains to make sure if they are overridden the default value remains present
  • Fixed issues removing/upgrading packages from path repositories on Windows
  • Fixed regression in 2.0.4 when handling of git@bitbucket.org URLs in vcs repositories
  • Fixed issue running create-project in current directory on Windows

[2.0.4] 2020-10-30

... (truncated)

Commits
  • 591c2c1 Release 2.0.9
  • 0adea1e Update changelog
  • 07b8c23 Merge branch '1.10'
  • 4d2ae78 Update changelog
  • 37c5e99 Merge remote-tracking branch 'nicolas-grekas/path-version' into 1.10
  • 9231344 Filter out exclude-from-classmap rules to avoid generating very long regexes,...
  • bab2107 Update deps
  • 725b33e Handle "versions" option in PathRepository, remove support for "branch-version"
  • 079e501 Revert "Merge pull request #9273 from nicolas-grekas/dev-version"
  • 5137194 Add comment about not removing the static $installed data, refs #9635
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codecov[bot] commented 3 years ago

Codecov Report

Merging #15 (1bdc567) into main (54506b8) will not change coverage. The diff coverage is n/a.

Impacted file tree graph

@@             Coverage Diff             @@
##                main       #15   +/-   ##
===========================================
  Coverage     100.00%   100.00%           
  Complexity       297       297           
===========================================
  Files             37        37           
  Lines            847       846    -1     
===========================================
- Hits             847       846    -1
Impacted Files Coverage Δ Complexity Δ
...c/ConventionalCommits/Configuration/FinderTool.php 100.00% <0.00%> (ø) 23.00% <0.00%> (ø%)
dependabot[bot] commented 3 years ago

Superseded by #19.