-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2024-373283e22f 2024-11-08 01:20:27.286225 -------------------------------------------------------------------------------- Name : composer Product : Fedora 39 Version : 2.8.2 Release : 3.fc39 URL : https://getcomposer.org/ Summary : Dependency Manager for PHP Description : Composer helps you declare, manage and install dependencies of PHP projects, ensuring you have the right stack everywhere. Documentation: https://getcomposer.org/doc/ -------------------------------------------------------------------------------- Update Information: Packaging changes keep upstream layout under /usr/share/composer keep only /usr/share/php/Composer/autoload.php for compatibility Version 2.8.2 - 2024-10-29 Fixed crash while suggesting providers if they have no description (#12152) Fixed issues creating lock files violating the schema in some circumstances (#12149) Fixed create-project regression in 2.8.1 when using path repos with relative paths (#12150) Fixed ctrl-C aborts not working inside text prompts (#12106) Fixed git failing silently when git cannot read a repo due to ownership violations (#12178) Fixed handling of signals in non-PHP binaries run via proxies (#12176) Version 2.8.1 - 2024-10-04 Fixed init command regression when no license is provided (#12145) Fixed --strict-ambiguous flag handling whereas it sometimes did not report all issues (#12148) Fixed create-project to inherit the target folder's permissions for installed project files (#12146) Fixed a few cases where the prompt for using a parent dir's composer.json fails to work correctly (#8023) Version 2.8.0 - 2024-10-02 BC Warning: Fixed https_proxy env var falling back to http_proxy's value. The fallback and warning have now been removed per the 2.7.3 release notes (#11938, #11915) Added --patch-only flag to the update command to restrict updates to patch versions and make an update of all deps safer (#12122) Added --abandoned flag to the audit command to configure how abandoned packages should be treated, overriding the audit.abandoned config setting (#12091) Added --ignore-severity flag to the audit command to ignore one or more advisory severities (#12132) Added --bump-after-update flag to the update command to run bump after the update is done (#11942) Added a way to control which scripts receive additional CLI arguments and where they appear in the command, see the docs (#12086) Added allow-missing-requirements config setting to skip the error when the lock file is not fulfilling the composer.json's dependencies (#11966) Added a JSON schema for the composer.lock file (#12123) Added better support for Bitbucket app passwords when cloning repos / installing from source (#12103) Added --type flag to filter packages by type(s) in the reinstall command (#12114) Added --strict-ambiguous flag to the dump-autoload command to make it return with an error code if duplicate classes are found (#12119) Added warning in dump-autoload when vendor files have been deleted (#12139) Added warnings for each missing platform package when running create-project to avoid having to run it again and again (#12120) Added sorting of packages in allow-plugins when sort-packages is enabled (#11348) Added suggestion of provider packages / polyfills when an ext or lib package is missing (#12113) Improved interactive package update selection by first outputting all packages and their possible updates (#11990) Improved dependency resolution failure output by sorting the output in a deterministic and (often) more logical way (#12111) Fixed PHP 8.4 deprecation warnings about E_STRICT (#12116) Fixed init command to validate the given license identifier (#12115) Fixed version guessing to be more deterministic on feature branches if it appears that it could come from either of two mainline branches (#12129) Fixed COMPOSER_ROOT_VERSION env var handling to treat 1.2 the same as 1.2.x-dev and not 1.2.0 (#12109) Fixed require command skipping new stability flags from the lock file, causing invalid lock file diffs (#12112) Fixed php://stdin potentially being open several times when running Composer programmatically (#12107) Fixed handling of platform packages in why-not command and partial updates (#12110) Reverted "Fixed transport-options.ssl for local cert authorization being stored in lock file making them less portable (#12019)" from 2.7.8 as it was broken -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 30 2024 Remi Collet <remi@xxxxxxxxxxxx> - 2.8.2-3 - keep upstream layout for simplicity * Wed Oct 30 2024 Remi Collet <remi@xxxxxxxxxxxx> - 2.8.2-2 - update to 2.8.2 - fix diagnose command -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-373283e22f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys -------------------------------------------------------------------------------- -- _______________________________________________ package-announce mailing list -- package-announce@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-announce-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
