Early Bird Registration for DrupalCon Portland 2024 is open! Register by 23:59 PST on 31 March 2024, to get $100 off your ticket.
Follow up to #2400407: [meta] Ensure vendor (PHP) libraries are on latest stable release.
Use composer to update doctrine/cache library to version 1.4.2
Comment | File | Size | Author |
---|---|---|---|
#14 | update_doctrine_cache-2493909-14.patch | 65.05 KB | naveenvalecha |
#13 | update_doctrine_cache-2493909-13.patch | 65.04 KB | naveenvalecha |
#9 | update_doctrine_cache-2493909-9.patch | 67.21 KB | naveenvalecha |
#6 | update_doctrine_cache-2493909-6.patch | 36.97 KB | edysmp |
Comments
Comment #1
iMiksuComment #2
iMiksuComment #3
dawehnerJust in general, we could avoid those updates given that they are not an explicit dependency. In case some other library requires a newer version, it will be updated automatically.
Later then, we could also update right before the release.
Comment #4
chananapeeyush CreditAttribution: chananapeeyush as a volunteer and commented@dawehner,
I saw in one of the issue before regarding the updation of a vendor library which was dependent on the other third party vendor library and composer was not showing its latest version during composer update.
Exact similar issue here https://www.drupal.org/node/2488960#comment-9924124
Is it something else that was missed ? Thanks!
Comment #5
cilefen CreditAttribution: cilefen commentedComment #6
edysmpComment #7
daffie CreditAttribution: daffie commentedLooks good to me.
Comment #8
webchickThis one needs a quick re-roll because the other one went in.
Comment #9
naveenvalechaRerolled.
Comment #10
naveenvalechaunassinging to myself.
Comment #11
naveenvalechaComment #12
naveenvalechaHad some unrelated changes in core/Maintainers.txt. So rerolling this one again.
Comment #13
naveenvalechaComment #14
naveenvalechaThis is fixed https://www.drupal.org/node/2488960
composer update doctrine/cache
Comment #15
evilfurryone CreditAttribution: evilfurryone at Wunder commented- Installing doctrine/cache (v1.4.1)
Downloading: 100%
Patch tested and composer installs v1.4.1 of doctrine/cache
Comment #17
larowlan1.4.2 is out and is a security release http://www.doctrine-project.org/2015/08/31/security_misconfiguration_vul...
Working on re-roll
Comment #18
larowlanWe need to bump common, annotations and cache - given common relies on the other two, this is a duplicate.
Thanks for your work here, see you in #2105825: Update Doctrine/common Component to 2.5.1 (security) (includes cache/annotations too)