Cameron Eagans
Cameron Eagans
Definitely not opposed to a warning here if there's a reliable way to detect GNU Patch vs whatever macOS ships with.
How critical is it that the patch is stored in `vendor/drupal/core`? I'm not sure why you'd want it there, because a `composer update` would nuke that entire directory. In addition,...
It took some time, but I see what you're saying now :) If package A depends on package B, and package B defines a local path to a patch, the...
If you're concerned about it, is there any reason you can't just download the patch and keep it locally? That way, you're not depending on external sources and verification isn't...
> especially for enterprise usage. That's actually the reason I ask. We're using it internally @ NBCUniversal, but when we did the work on this plugin, we didn't discuss that...
@skwashd Like I said, I'm not opposed to adding it, but it's not a high priority for me right now. If a PR is opened that satisfied the criteria in...
(Also, yes - not md5 please. SHA-1 or SHA-256 are both fine. SHA-1 is okay in this case since it's more of a consistency check than a security feature -...
First off, let me just rule out MD5. That's not going to happen in this plugin under any circumstances. I would not be interested in adding a flag to change...
This is on the [roadmap](https://github.com/cweagans/composer-patches/issues/93) for 2.0.0. If you'd still like to work on it, `master` is the place! I think #212 needs to go in first though.
If you're getting "Cannot apply patch", it's likely because your patch does not apply. In this case, you're attempting to apply the patch from https://www.drupal.org/project/paragraphs/issues/2868155#comment-12261810, and it doesn't apply because...