Skip to content

Bump the php-prod group across 1 directory with 9 updates #213

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Bump the php-prod group across 1 directory with 9 updates #213

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jun 13, 2025
edited
Loading

Bumps the php-prod group with 9 updates in the / directory:

Package From To
doctrine/doctrine-bundle 2.13.2 2.14.0
doctrine/doctrine-migrations-bundle 3.4.1 3.4.2
doctrine/orm 2.20.2 2.20.3
ramsey/uuid 4.7.6 4.8.1
twig/twig 3.20.0 3.21.1
web-auth/cose-lib 4.4.0 4.4.1
web-auth/webauthn-stimulus 5.1.3 5.2.2
web-auth/webauthn-symfony-bundle 5.1.3 5.2.2
web-token/jwt-signature-algorithm-rsa 3.4.6 3.4.8

Updates doctrine/doctrine-bundle from 2.13.2 to 2.14.0

Release notes

Sourced from doctrine/doctrine-bundle's releases.

2.14.0

Release Notes for 2.14.0

2.14.0

  • Total issues resolved: 0
  • Total pull requests resolved: 8
  • Total contributors: 7

Improvement

Feature

Commits
  • ca6a735 Merge branch '2.13.x' into 2.14.x
  • a91383d Ensure classes using the #[Entity] attribute are not declared as services
  • aac7562 Fix Dev dependencies stability check
  • 02376ad Bump doctrine/.github from 7.2.1 to 7.2.2 (#1873)
  • fdeecd4 Add loaded entities profiler section (#1872)
  • edb600c Rename abstract test case classes with deprecated "Test" suffix (#1870)
  • d9ea81d Remove PHPUnit "require PHP 8" (#1869)
  • a5f5613 Merge pull request #1866 from doctrine/dependabot/github_actions/doctrine/dot...
  • a622d7f Bump doctrine/.github from 5.3.0 to 7.2.1
  • ed97813 phpstan: lvl 4 -> 5 (#1864)
  • Additional commits viewable in compare view

Updates doctrine/doctrine-migrations-bundle from 3.4.1 to 3.4.2

Release notes

Sourced from doctrine/doctrine-migrations-bundle's releases.

3.4.2

Release Notes for 3.4.2

3.4.x bugfix release (patch)

3.4.2

  • Total issues resolved: 0
  • Total pull requests resolved: 5
  • Total contributors: 3

Bugfixes

Improvements

CI

Commits
  • 5a6ac71 Merge pull request #590 from tobias-93/fix-multiple-connections
  • 56f684f Merge pull request #599 from doctrine/dependabot/github_actions/doctrine/dot-...
  • be3ba36 Bump doctrine/.github from 7.2.1 to 7.2.2
  • dc4f5b5 Update whitespace in comment
  • 0d9e53d Add test for filtering multiple connections
  • af735b5 Remove default tag for schema filter, it is added for each connection dynamic...
  • 7569f07 Fix filter support for multiple connections
  • 9f27613 Bump doctrine/.github from 7.2.0 to 7.2.1 (#598)
  • 12b0af4 Merge pull request #597 from greg0ire/remove-persistence-constraint
  • ca926d7 Remove constraint on doctrine/persistence
  • Additional commits viewable in compare view

Updates doctrine/orm from 2.20.2 to 2.20.3

Release notes

Sourced from doctrine/orm's releases.

2.20.3

Release Notes for 2.20.3

2.20.x bugfix release (patch)

2.20.3

  • Total issues resolved: 0
  • Total pull requests resolved: 13
  • Total contributors: 12

Bugfixes

Improvement

Documentation

Code Style

Test Suite

CI

Commits
  • 17d28b5 Merge pull request #11917 from stof/lazy_ghost_postload
  • a2d510c Fix the initialization of lazy-ghost proxies with postLoad listeners
  • 2a4ebca Refactor tests to avoid using instance properties to track postLoad
  • cc29ae0 Merge pull request #11891 from mpdude/expression-matching-caveats
  • bd4a053 Merge pull request #11894 from DavidPetrasek/3.3.x
  • 52fbfb3 Revert to http for namespace name
  • c259371 Remove property hooks mention
  • dcdd58b working-with-associations.rst aktualisieren
  • 7b9c538 Add more detailed caveats for using the Collection filtering API
  • cdc5fe1 Merge pull request #11889 from Rixafy/docs-typo-fix
  • Additional commits viewable in compare view

Updates ramsey/uuid from 4.7.6 to 4.8.1

Release notes

Sourced from ramsey/uuid's releases.

4.8.1

Fixed

  • This tagged release ensures the stable documentation build matches the current stable release.

Full Changelog: ramsey/uuid@4.8.0...4.8.1

4.8.0

Deprecated

The following will be removed in ramsey/uuid 5.0.0:

  • Ramsey\Uuid\Codec\OrderedTimeCodec is deprecated; please migrate to version 6 UUIDs.
  • Ramsey\Uuid\Codec\TimestampFirstCombCodec is deprecated; please migrate to version 7 UUIDs.
  • Ramsey\Uuid\Codec\TimestampLastCombCodec is deprecated; please use Ramsey\Uuid\Codec\StringCodec instead.
  • Ramsey\Uuid\Generator\CombGenerator is deprecated; please migrate to version 7 UUIDs.

Fixed

  • Allow brick/math version ^0.13; fixed in #589.
  • Update call to str_getcsv() to avoid deprecation notice in PHP 8.4; fixed in #590.
  • Hexadecimal is never an empty string; fixed in #593.
  • Update docblocks for Uuid::fromBytes(), Uuid::fromString(), Uuid::fromDateTime(), Uuid::fromHexadecimal(), and Uuid::fromInteger() to note that each can throw InvalidArgumentException, addressing PHPStan errors occurring at call sites; fixed in #552.
  • getVariant() for MaxUuid now correctly returns Uuid::RESERVED_FUTURE, as specified in RFC 9562, section 5.10.
  • getVariant() for NilUuid now correctly returns Uuid::RESERVED_NCS, as specified in RFC 9562, section 5.9.

New Contributors

Full Changelog: ramsey/uuid@4.7.6...4.8.0

Changelog

Sourced from ramsey/uuid's changelog.

4.8.1 - 2025-06-01

Fixed

  • This tagged release ensures the stable documentation build matches the current stable release.

4.8.0 - 2025-06-01

Deprecated

The following will be removed in ramsey/uuid 5.0.0:

  • Ramsey\Uuid\Codec\OrderedTimeCodec is deprecated; please migrate to version 6 UUIDs.
  • Ramsey\Uuid\Codec\TimestampFirstCombCodec is deprecated; please migrate to version 7 UUIDs.
  • Ramsey\Uuid\Codec\TimestampLastCombCodec is deprecated; please use Ramsey\Uuid\Codec\StringCodec instead.
  • Ramsey\Uuid\Generator\CombGenerator is deprecated; please migrate to version 7 UUIDs.

Fixed

  • Allow brick/math version ^0.13; fixed in #589.
  • Update call to str_getcsv() to avoid deprecation notice in PHP 8.4; fixed in #590.
  • Hexadecimal is never an empty string; fixed in #593.
  • Update docblocks for Uuid::fromBytes(), Uuid::fromString(), Uuid::fromDateTime(), Uuid::fromHexadecimal(), and Uuid::fromInteger() to note that each can throw InvalidArgumentException, addressing PHPStan errors occurring at call sites; fixed in #552.
  • getVariant() for MaxUuid now correctly returns Uuid::RESERVED_FUTURE, as specified in RFC 9562, section 5.10.
  • getVariant() for NilUuid now correctly returns Uuid::RESERVED_NCS, as specified in RFC 9562, section 5.9.
Commits
  • fdf4dd4 Prepare release 4.8.1
  • b366701 Update documentation with references to RFC 9562
  • 6700833 Prepare for release 4.8.0
  • a11a7e5 Lock brick/math to ^0.9 for testing and update CHANGELOG
  • db6a661 Merge branch 'derrabus-bump/math' into 4.x
  • d52de61 fix: max UUID should be variant 7, nil UUID should be variant 0
  • dbcee99 Update CHANGELOG with most recent changes
  • efc4409 Clean up docblocks, code, and note new deprecations
  • d43a9e7 chore: update copyright year
  • 4d0c09d chore: convert @​psalm-return to @​return
  • Additional commits viewable in compare view

Updates twig/twig from 3.20.0 to 3.21.1

Changelog

Sourced from twig/twig's changelog.

3.21.1 (2025-05-03)

  • Fix ExtensionSet usage of BinaryOperatorExpressionParser

3.21.0 (2025-05-02)

  • Fix wrong array index
  • Deprecate Template::loadTemplate()
  • Fix testing and expression when it evaluates to an instance of Markup
  • Add ReturnPrimitiveTypeInterface (and sub-interfaces for number, boolean, string, and array)
  • Add SupportDefinedTestInterface for expression nodes supporting the defined test
  • Deprecate using the | operator in an expression with + or - without using parentheses to clarify precedence
  • Deprecate operator precedence outside of the [0, 512] range
  • Introduce expression parser classes to describe operators and operands provided by extensions instead of arrays (it comes with many deprecations that are documented in the deprecated documentation chapter)
  • Deprecate the Twig\ExpressionParser, and Twig\OperatorPrecedenceChange classes
  • Add attributes AsTwigFilter, AsTwigFunction, and AsTwigTest to ease extension development
Commits

Updates web-auth/cose-lib from 4.4.0 to 4.4.1

Release notes

Sourced from web-auth/cose-lib's releases.

4.4.1

Release Notes for 4.4.1

4.4.x bugfix release (patch)

4.4.1

Commits

Updates web-auth/webauthn-stimulus from 5.1.3 to 5.2.2

Commits
  • 196ea14 Add WebAuthn authentication extensions support
  • 2f9eb8c Refactor Symfony test configurations and add badge support
  • 06c9c76 Refactor and improve Webauthn handling, tests, and configs. (#701)
  • See full diff in compare view

Updates web-auth/webauthn-symfony-bundle from 5.1.3 to 5.2.2

Commits
  • aebb031 Update PublicKeyCredentialSource.orm.xml
  • 778eee7 Add user provider configuration for Webauthn authentication
  • 819586e Deprecate DoctrineCredentialSourceRepository and fix Throwable catch
  • b6a6639 Refactor Symfony test configurations and add badge support
  • 177356b Merge pull request #703 from web-auth/temp-456146
  • 8e4c2fe Deprecate DoctrineCredentialSourceRepository in Symfony. (#702)
  • 9819bb0 Refactor and improve Webauthn handling, tests, and configs. (#701)
  • 272078a Replace secured_rp_ids with allowed_origins and allow_subdomains
  • See full diff in compare view

Updates web-token/jwt-signature-algorithm-rsa from 3.4.6 to 3.4.8

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the php-prod group across 1 directory with 9 updates
70d7213 
Bumps the php-prod group with 9 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [doctrine/doctrine-bundle](https://github.com/doctrine/DoctrineBundle) | `2.13.2` | `2.14.0` |
| [doctrine/doctrine-migrations-bundle](https://github.com/doctrine/DoctrineMigrationsBundle) | `3.4.1` | `3.4.2` |
| [doctrine/orm](https://github.com/doctrine/orm) | `2.20.2` | `2.20.3` |
| [ramsey/uuid](https://github.com/ramsey/uuid) | `4.7.6` | `4.8.1` |
| [twig/twig](https://github.com/twigphp/Twig) | `3.20.0` | `3.21.1` |
| [web-auth/cose-lib](https://github.com/web-auth/cose-lib) | `4.4.0` | `4.4.1` |
| [web-auth/webauthn-stimulus](https://github.com/web-auth/ux) | `5.1.3` | `5.2.2` |
| [web-auth/webauthn-symfony-bundle](https://github.com/web-auth/webauthn-symfony-bundle) | `5.1.3` | `5.2.2` |
| [web-token/jwt-signature-algorithm-rsa](https://github.com/web-token/jwt-signature-algorithm-rsa) | `3.4.6` | `3.4.8` |



Updates `doctrine/doctrine-bundle` from 2.13.2 to 2.14.0
- [Release notes](https://github.com/doctrine/DoctrineBundle/releases)
- [Commits](doctrine/DoctrineBundle@2.13.2...2.14.0)

Updates `doctrine/doctrine-migrations-bundle` from 3.4.1 to 3.4.2
- [Release notes](https://github.com/doctrine/DoctrineMigrationsBundle/releases)
- [Commits](doctrine/DoctrineMigrationsBundle@3.4.1...3.4.2)

Updates `doctrine/orm` from 2.20.2 to 2.20.3
- [Release notes](https://github.com/doctrine/orm/releases)
- [Commits](doctrine/orm@2.20.2...2.20.3)

Updates `ramsey/uuid` from 4.7.6 to 4.8.1
- [Release notes](https://github.com/ramsey/uuid/releases)
- [Changelog](https://github.com/ramsey/uuid/blob/4.x/CHANGELOG.md)
- [Commits](ramsey/uuid@4.7.6...4.8.1)

Updates `twig/twig` from 3.20.0 to 3.21.1
- [Changelog](https://github.com/twigphp/Twig/blob/3.x/CHANGELOG)
- [Commits](twigphp/Twig@v3.20.0...v3.21.1)

Updates `web-auth/cose-lib` from 4.4.0 to 4.4.1
- [Release notes](https://github.com/web-auth/cose-lib/releases)
- [Commits](web-auth/cose-lib@4.4.0...4.4.1)

Updates `web-auth/webauthn-stimulus` from 5.1.3 to 5.2.2
- [Commits](web-auth/ux@5.1.3...5.2.2)

Updates `web-auth/webauthn-symfony-bundle` from 5.1.3 to 5.2.2
- [Commits](web-auth/webauthn-symfony-bundle@5.1.3...5.2.2)

Updates `web-token/jwt-signature-algorithm-rsa` from 3.4.6 to 3.4.8
- [Commits](web-token/jwt-signature-algorithm-rsa@3.4.6...3.4.8)

---
updated-dependencies:
- dependency-name: doctrine/doctrine-bundle
  dependency-version: 2.14.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: doctrine/doctrine-migrations-bundle
  dependency-version: 3.4.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: php-prod
- dependency-name: doctrine/orm
  dependency-version: 2.20.3
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: php-prod
- dependency-name: ramsey/uuid
  dependency-version: 4.8.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: twig/twig
  dependency-version: 3.21.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: web-auth/cose-lib
  dependency-version: 4.4.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: php-prod
- dependency-name: web-auth/webauthn-stimulus
  dependency-version: 5.2.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: web-auth/webauthn-symfony-bundle
  dependency-version: 5.2.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: php-prod
- dependency-name: web-token/jwt-signature-algorithm-rsa
  dependency-version: 3.4.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: php-prod
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Jun 13, 2025
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github Jun 16, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Jun 16, 2025
@dependabot dependabot bot deleted the dependabot/composer/php-prod-8c06f8ab1e branch June 16, 2025 11:36
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file php Pull requests that update Php code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants