ongeki-score
ongeki-score copied to clipboard
build(deps): bump the composer group across 1 directory with 5 updates
Bumps the composer group with 3 updates in the /OngekiScoreLog directory: guzzlehttp/guzzle, laravel/framework and phpseclib/phpseclib.
Updates guzzlehttp/guzzle
from 6.5.5 to 6.5.8
Release notes
Sourced from guzzlehttp/guzzle's releases.
Release 6.5.8
See change log for changes.
Release 6.5.7
See change log for changes.
Release 6.5.6
See change log for changes.
Changelog
Sourced from guzzlehttp/guzzle's changelog.
6.5.8 - 2022-06-20
- Fix change in port should be considered a change in origin
- Fix
CURLOPT_HTTPAUTH
option not cleared on change of origin6.5.7 - 2022-06-09
- Fix failure to strip Authorization header on HTTP downgrade
- Fix failure to strip the Cookie header on change in host or HTTP downgrade
6.5.6 - 2022-05-25
- Fix cross-domain cookie leakage
Commits
Updates laravel/framework
from 5.6.40 to 5.8.38
Commits
78eb4da
versionfb968ef
Add support for the new composer installed.json format (#32310) (#32328)ce08aae
version4436662
fix password checkafcfcf2
Revert "Update SeeInOrder.php"25fa67b
Update SeeInOrder.phpf675964
Update TrimStringsTest.php3d432b4
Apply fixes from StyleCI (#31014)9b3ee46
Merge pull request #30985 from laravel/5.8-csbac820f
Code style fixes- Additional commits viewable in compare view
Updates guzzlehttp/psr7
from 1.8.3 to 1.9.1
Release notes
Sourced from guzzlehttp/psr7's releases.
1.9.1
See change log for changes.
1.9.0
See change log for changes.
1.8.5
See change log for changes.
1.8.4
See change log for changes.
Changelog
Sourced from guzzlehttp/psr7's changelog.
1.9.1 - 2023-04-17
Fixed
- Fixed header validation issue
1.9.0 - 2022-06-20
Added
- Added
UriComparator::isCrossOrigin
method1.8.5 - 2022-03-20
Fixed
- Correct header value validation
1.8.4 - 2022-03-20
Fixed
- Validate header values properly
Commits
Updates phpseclib/phpseclib
from 2.0.36 to 2.0.47
Release notes
Sourced from phpseclib/phpseclib's releases.
2.0.47
- BigInteger: add getLength() and getLengthInBytes() methods
- BigInteger: put guardrails on isPrime() and randomPrime() (CVE-2024-27354)
- ASN1: limit OID length (CVE-2024-27355)
2.0.46
- SSH2: implement terrapin attack countermeasures (#1972)
- SSH2: only capture login info once (#1970)
- SSH2: add support for RFC8308 (#1960)
- Rijndael: fix for PHP 8.3+ compatability (#1944)
- Crypt/Base: improve ARM detection code (#1949)
- X509: fix for weird characters in subjaltname (#1943)
2.0.45
- SFTP: make it so SFTP::RESUME also sets offset of local file (#1921)
- SFTP: RESUME_START didn't work as described (#1921)
- SFTP: fix SFTPv2 errors when logging errors (#1933)
- SFTP: fix issue with get() downloading to files / streams (#1934)
- Rijndael: fix E_DEPRECATED (#1935)
- improve PHP32 compatibility (#1931)
2.0.44
- SSH2: fix PHP 8.2 E_DEPRECATED errors (#1917)
2.0.43
- SFTP: fix NET_SFTP_ATTR_EXTENDED (#1907)
- SSH2: fix PHP 8.2 E_DEPRECATED errors (#1917)
- X509: add support for EV DN's (#1916)
2.0.42
- Blowfish: fix issues on 32-bit PHP installs
- BigInteger: fix for hex numbers with new lines in them
- SSH2: add getTimeout() method (#1889)
2.0.41
- fix for more PHP 8.2 deprecations (#1875)
2.0.40
- fix for PHP 8.2 deprecations (#1869)
- SSH2: if logging in with rsa-sha2-256/512 fails, try ssh-rsa (#1865)
- SSH/Agent: add support for named pipes on windows (for pageant) (#1866)
- Crypt/Base: add a function to check continuous buffer status (#1870)
- OpenSSL 3.0.1+ deprecated some algorithms (RC2, RC4, DES, Blowfish)
2.0.39
- SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#1841)
- SFTP: restore orig behavior when deleting non-existant folder (#1847)
- Random: fix fallback on PHP 8.1+
2.0.38
... (truncated)
Changelog
Sourced from phpseclib/phpseclib's changelog.
2.0.47 - 2024-02-25
- BigInteger: add getLength() and getLengthInBytes() methods
- BigInteger: put guardrails on isPrime() and randomPrime() (CVE-2024-27354)
- ASN1: limit OID length (CVE-2024-27355)
2.0.46 - 2023-12-28
- SSH2: implement terrapin attack countermeasures (#1972)
- SSH2: only capture login info once (#1970)
- SSH2: add support for RFC8308 (#1960)
- Rijndael: fix for PHP 8.3+ compatability (#1944)
- Crypt/Base: improve ARM detection code (#1949)
- X509: fix for weird characters in subjaltname (#1943)
2.0.45 - 2023-09-15
- SFTP: make it so SFTP::RESUME also sets offset of local file (#1921)
- SFTP: RESUME_START didn't work as described (#1921)
- SFTP: fix SFTPv2 errors when logging errors (#1933)
- SFTP: fix issue with get() downloading to files / streams (#1934)
- Rijndael: fix E_DEPRECATED (#1935)
- improve PHP32 compatibility (#1931)
2.0.44 - 2023-06-13
- SSH2: fix PHP 8.2 E_DEPRECATED errors (#1917)
2.0.43 - 2023-06-13
- SFTP: fix NET_SFTP_ATTR_EXTENDED (#1907)
- SSH2: fix PHP 8.2 E_DEPRECATED errors (#1917)
- X509: add support for EV DN's (#1916)
2.0.42 - 2023-03-06
- Blowfish: fix issues on 32-bit PHP installs
- BigInteger: fix for hex numbers with new lines in them
- SSH2: add getTimeout() method (#1889)
2.0.41 - 2022-12-23
- fix for more PHP 8.2 deprecations (#1875)
2.0.40 - 2022-12-17
... (truncated)
Commits
b7d7d90
Merge branch '1.0' into 2.086990d5
CHANGELOG: add 1.0.23 release939f96c
Merge branch '1.0' into 2.0c55b751
BigInteger: fix getLength()2870c8f
BigInteger: phpseclib 2.0 updates0777e70
Tests: updates for phpseclib 2.063711d5
Merge branch '1.0' into 2.0e325310
ASN1: limit OID length2124f39
BigInteger: rm visibility modifiers from static variablese46ef4c
Merge branch '1.0' into 2.0- Additional commits viewable in compare view
Updates symfony/http-kernel
from 4.4.38 to 4.4.51
Release notes
Sourced from symfony/http-kernel's releases.
v4.4.51
Changelog (https://github.com/symfony/http-kernel/compare/v4.4.50...v4.4.51)
- no significant changes
v4.4.50
Changelog (https://github.com/symfony/http-kernel/compare/v4.4.49...v4.4.50)
- no significant changes
v4.4.49
Changelog (https://github.com/symfony/http-kernel/compare/v4.4.48...v4.4.49)
- bug #48273 Fix message for unresovable arguments of invokable controllers (fancyweb)
Commits
ad8ab19
Update VERSION for 4.4.51aa6df6c
Update VERSION for 4.4.50f7822a7
security #cve-2022-24894 [HttpKernel] Remove private headers before storing r...4e36db8
Update VERSION for 4.4.49bc62d95
[HttpKernel] Fix message for unresovable arguments of invokable controllers0924172
Bump Symfony version to 4.4.49a6d5229
Update VERSION for 4.4.4826989b2
bug #47857 [HttpKernel] Fix empty request stack when terminating with excepti...3f61170
[HttpKernel] Fix empty request stack when terminating with exception9a34f1a
bug #47878 [HttpKernel] Remove EOL when using error_log() in HttpKernel Logge...- Additional commits viewable in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase
.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
-
@dependabot rebase
will rebase this PR -
@dependabot recreate
will recreate this PR, overwriting any edits that have been made to it -
@dependabot merge
will merge this PR after your CI passes on it -
@dependabot squash and merge
will squash and merge this PR after your CI passes on it -
@dependabot cancel merge
will cancel a previously requested merge and block automerging -
@dependabot reopen
will reopen this PR if it is closed -
@dependabot close
will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually -
@dependabot show <dependency name> ignore conditions
will show all of the ignore conditions of the specified dependency -
@dependabot ignore <dependency name> major version
will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) -
@dependabot ignore <dependency name> minor version
will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) -
@dependabot ignore <dependency name>
will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) -
@dependabot unignore <dependency name>
will remove all of the ignore conditions of the specified dependency -
@dependabot unignore <dependency name> <ignore condition>
will remove the ignore condition of the specified dependency and ignore conditions You can disable automated security fix PRs for this repo from the Security Alerts page.