Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update all non-major dependencies #370

Open
wants to merge 1 commit into
base: 1.17.x
Choose a base branch
from

Conversation

renovate[bot]
Copy link
Contributor

@renovate renovate bot commented Feb 29, 2024

This PR contains the following updates:

Package Type Update Change Age Adoption Passing Confidence
composer stage minor 2.6.6 -> 2.8.3 age adoption passing confidence
docker/dockerfile syntax minor 1.6 -> 1.12 age adoption passing confidence
guzzlehttp/guzzle (source) require minor ^7.8.1 -> ^7.9.2 age adoption passing confidence
guzzlehttp/psr7 require minor ^2.6.2 -> ^2.7.0 age adoption passing confidence
jasny/twig-extensions require patch ^1.3 -> ^1.3.1 age adoption passing confidence
marked (source) dependencies patch ^13.0.1 -> ^13.0.3 age adoption passing confidence
monolog/monolog require minor ^3.5.0 -> ^3.8.0 age adoption passing confidence
node stage minor 22.4.0 -> 22.11.0 age adoption passing confidence
php require minor ~8.3.3 -> ~8.4.1 age adoption passing confidence
phpunit/phpunit (source) require-dev patch ^10.5.11 -> ^10.5.38 age adoption passing confidence
psalm/plugin-phpunit require-dev minor ^0.18.4 -> ^0.19.0 age adoption passing confidence
psr/log require patch ^3.0.0 -> ^3.0.2 age adoption passing confidence
symfony/yaml (source) require minor ^7.0.3 -> ^7.1.6 age adoption passing confidence
vimeo/psalm require-dev minor ^5.22.2 -> ^5.26.1 age adoption passing confidence

Release Notes

guzzle/guzzle (guzzlehttp/guzzle)

v7.9.2

Compare Source

Fixed
  • Adjusted handler selection to use cURL if its version is 7.21.2 or higher, rather than 7.34.0

v7.9.1

Compare Source

Fixed
  • Fix TLS 1.3 check for HTTP/2 requests

v7.9.0

Compare Source

Changed
  • Improve protocol version checks to provide feedback around unsupported protocols
  • Only select the cURL handler by default if 7.34.0 or higher is linked
  • Improved CurlMultiHandler to avoid busy wait if possible
  • Dropped support for EOL guzzlehttp/psr7 v1
  • Improved URI user info redaction in errors

v7.8.2

Compare Source

Added
  • Support for PHP 8.4
guzzle/psr7 (guzzlehttp/psr7)

v2.7.0

Compare Source

Added
  • Add Utils::redactUserInfo() method
  • Add ability to encode bools as ints in Query::build

v2.6.3

Compare Source

Fixed
  • Make StreamWrapper::stream_stat() return false if inner stream's size is null
Changed
  • PHP 8.4 support
jasny/twig-extensions (jasny/twig-extensions)

v1.3.1

Compare Source

markedjs/marked (marked)

v13.0.3

Compare Source

Bug Fixes
  • fix recursion-like stack overflow error caused by the old render… (#​3380) (89af0b8)

v13.0.2

Compare Source

Bug Fixes
Seldaek/monolog (monolog/monolog)

v3.8.0

Compare Source

  • Added $fileOpenMode param to StreamHandler to define a custom fopen mode to open the log file (#​1913)
    • Fixed PHP 8.4 deprecation notices (#​1903)
    • Added ability to extend/override IntrospectionProcessor (#​1899)
    • Added $timeout param to ProcessHandler to configure the stream_select() timeout to avoid blocking too long (default is 1.0 sec) (#​1916)
    • Fixed JsonFormatter batch handling to normalize records individually to make sure they look the same as if they were handled one by one (#​1906)
    • Fixed StreamHandler handling of write failures so that it now closes/reopens the stream and retries the write once before failing (#​1882)
    • Fixed StreamHandler error handler causing issues if a stream handler triggers an error (#​1866)
    • Fixed StreamHandler::reset not closing the stream, so that it would fail to write in some cases with long running processes (#​1862)
    • Fixed RotatingFileHandler issue where rotation does not happen in some long running processes (#​1905)
    • Fixed JsonFormatter handling of incomplete classes (#​1834)
    • Fixed RotatingFileHandler bug where rotation could sometimes not happen correctly (#​1905)

v3.7.0

Compare Source

  • Added NormalizerFormatter->setBasePath(...) (and JsonFormatter by extension) that allows removing the project's path from the stack trace output (47e301d)
    • Fixed JsonFormatter handling of incomplete classes (#​1834)
    • Fixed private error handlers causing problems with custom StreamHandler implementations (#​1866)
nodejs/node (node)

v22.11.0: 2024-10-29, Version 22.11.0 'Jod' (LTS), @​richardlau

Compare Source

Notable Changes

This release marks the transition of Node.js 22.x into Long Term Support (LTS)
with the codename 'Jod'. The 22.x release line now moves into "Active LTS"
and will remain so until October 2025. After that time, it will move into
"Maintenance" until end of life in April 2027.

Other than updating metadata, such as the process.release object, to reflect
that the release is LTS, no further changes from Node.js 22.10.0 are included.

OpenSSL 3.x

Official binaries for Node.js 22.x currently include OpenSSL 3.0.x (more
specifically, the quictls OpenSSL fork).
OpenSSL 3.0.x is the currently designated long term support version that is
scheduled to be supported until 7th September 2026, which is within the expected
lifetime of Node.js 22.x. We are expecting upstream OpenSSL to announce a
successor long term support version prior to that date and since OpenSSL now
follows a semantic versioning-like versioning scheme we expect to be able to
update to the next long term supported version of OpenSSL during the lifetime of
Node.js 22.x.

v22.10.0: 2024-10-16, Version 22.10.0 (Current), @​aduh95

Compare Source

Notable Changes
New "module-sync" exports condition

This release introduces a "module-sync" exports condition that's enabled when
require(esm) is enabled, so packages can supply a synchronous ES module to the
Node.js module loader, no matter if it's being required or imported. This is
similar to the "module" condition that bundlers have been using to support
require(esm) in Node.js, and allows dual-package authors to opt into ESM-first
only on newer versions of Node.js that supports require(esm) to avoid the
dual-package hazard.

{
  "type": "module",
  "exports": {
    "node": {
      // On new version of Node.js, both require() and import get
      // the ESM version
      "module-sync": "./index.js",
      // On older version of Node.js, where "module-sync" and require(esm) are
      // not supported, use the CJS version to avoid dual-package hazard.
      // When package authors think it's time to drop support for older versions of
      // Node.js, they can remove the exports conditions and just use "main": "index.js".
      "default": "./dist/index.cjs"
    },
    // On any other environment, use the ESM version.
    "default": "./index.js"
  }
}

Or if the package is only meant to be run on Node.js and wants to fallback to
CJS on older versions that don't have require(esm):

{
  "type": "module",
  "exports": {
    // On new version of Node.js, both require() and import get the ESM version
    "module-sync": "./index.js",
    // On older version of Node.js, where "module-sync" and require(esm) are
    // not supported, use the CJS version to avoid dual-package hazard.
    // When package authors think it's time to drop support for older versions of
    // Node.js, they can remove the exports conditions and just use "main": "index.js".
    "default": "./dist/index.cjs"
  }
}

For package authors: this only serves as a feature-detection mechanism for
packages that wish to support both CJS and ESM users during the period when some
active Node.js LTS versions support require(esm) while some older ones don't.
When all active Node.js LTS lines support require(esm), packages can simplify
their distributions by bumping the major version, dropping their CJS exports,
and removing the module-sync exports condition (with only main or default
targetting the ESM exports). If the package needs to support both bundlers and
being run unbundled on Node.js during the transition period, use both
module-sync and module and point them to the same ESM file. If the package
already doesn't want to support older versions of Node.js that doesn't support
require(esm), don't use this export condition.

For bundlers/tools: they should avoid implementing this stop-gap condition.
Most existing bundlers implement the de-facto bundler standard
module
exports condition, and that should be enough to support users who want to bundle
ESM from CJS consumers. Users who want both bundlers and Node.js to recognize
the ESM exports can use both module/module-sync conditions during the
transition period, and can drop module-sync+module when they no longer need
to support older versions of Node.js. If tools do want to support this
condition, it's recommended to make the resolution rules in the graph pointed by
this condition match the Node.js native ESM rules to avoid divergence.

We ended up implementing a condition with a different name instead of reusing
"module", because existing code in the ecosystem using the "module"
condition sometimes also expect the module resolution for these ESM files to
work in CJS style, which is supported by bundlers, but the native Node.js loader
has intentionally made ESM resolution different from CJS resolution (e.g.
forbidding import './noext' or import './directory'), so it would be
breaking to implement a "module" condition without implementing the forbidden
ESM resolution rules. For now, this just implements a new condition as
semver-minor so it can be backported to older LTS.

Contributed by Joyee Cheung in #​54648.

node --run is now stable

This CLI flag runs a specified command from a package.json's "scripts" object.

For the following package.json:

{
  "scripts": {
    "test": "node --test-reporter junit --test ./test"
  }
}

You can run node --run test and that would start the test suite.

Contributed by Yagiz Nizipli in #​53763.

Other notable changes
  • [f0b441230a] - (SEMVER-MINOR) crypto: add KeyObject.prototype.toCryptoKey (Filip Skokan) #​55262
  • [349d2ed07b] - (SEMVER-MINOR) crypto: add Date fields for validTo and validFrom (Andrew Moon) #​54159
  • [bebc95ed58] - doc: add abmusse to collaborators (Abdirahim Musse) #​55086
  • [914db60159] - (SEMVER-MINOR) http2: expose nghttp2_option_set_stream_reset_rate_limit as an option (Maël Nison) #​54875
  • [f7c3b03759] - (SEMVER-MINOR) lib: propagate aborted state to dependent signals before firing events (jazelly) #​54826
  • [32261fc98a] - (SEMVER-MINOR) module: support loading entrypoint as url (RedYetiDev) #​54933
  • [06957ff355] - (SEMVER-MINOR) module: implement flushCompileCache() (Joyee Cheung) #​54971
  • [2dcf70c347] - (SEMVER-MINOR) module: throw when invalid argument is passed to enableCompileCache() (Joyee Cheung) #​54971
  • [f9b19d7c44] - (SEMVER-MINOR) module: write compile cache to temporary file and then rename it (Joyee Cheung) #​54971
  • [e95163b170] - (SEMVER-MINOR) process: add process.features.require_module (Joyee Cheung) #​55241
  • [4050f68e5d] - (SEMVER-MINOR) process: add process.features.typescript (Aviv Keller) #​54295
  • [86f7cb802d] - (SEMVER-MINOR) test_runner: support custom arguments in run() (Aviv Keller) #​55126
  • [b62f2f8259] - (SEMVER-MINOR) test_runner: add 'test:summary' event (Colin Ihrig) #​54851
  • [d7c708aec5] - (SEMVER-MINOR) test_runner: add support for coverage via run() (Chemi Atlow) #​53937
  • [5fda4a1498] - (SEMVER-MINOR) worker: add markAsUncloneable api (Jason Zhang) #​55234
Commits

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.


  • If you want to rebase/retry this PR, check this box

Read more about the use of Renovate Bot within ocramius/* projects.

@renovate renovate bot added the renovate label Feb 29, 2024
Copy link
Contributor Author

renovate bot commented Feb 29, 2024

Branch automerge failure

This PR was configured for branch automerge. However, this is not possible, so it has been raised as a PR instead.


  • Branch has one or more failed status checks

@renovate renovate bot force-pushed the renovate/all-minor-patch branch 5 times, most recently from 0b8704b to 470b279 Compare March 6, 2024 01:33
@renovate renovate bot changed the title Update composer Docker tag to v2.7.1 Update all non-major dependencies Mar 6, 2024
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 11 times, most recently from 19fc19a to 260c350 Compare March 11, 2024 21:04
@renovate renovate bot changed the base branch from 1.14.x to 1.15.x March 11, 2024 21:05
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 8 times, most recently from 89d6dae to f20266d Compare March 18, 2024 04:48
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from ca6ee3a to 0a275a3 Compare March 20, 2024 04:50
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 68fef33 to fb0daf8 Compare September 13, 2024 08:18
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from cb6f05f to 3b4f93e Compare September 21, 2024 07:13
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from b743b92 to 07d7099 Compare October 3, 2024 21:32
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from e34b464 to 3de7f76 Compare October 8, 2024 15:50
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from 546ad9d to 5d5f7b0 Compare October 19, 2024 15:59
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 6 times, most recently from 4ef5c16 to 10f6a0f Compare October 31, 2024 14:38
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 2 times, most recently from d4ec037 to d595330 Compare November 19, 2024 02:01
@renovate renovate bot force-pushed the renovate/all-minor-patch branch 9 times, most recently from a3abf92 to f81e823 Compare November 25, 2024 15:44
Copy link
Contributor Author

renovate bot commented Nov 25, 2024

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

  • any of the package files in this branch needs updating, or
  • the branch becomes conflicted, or
  • you click the rebase/retry checkbox if found above, or
  • you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: composer.lock
Command failed: composer update guzzlehttp/guzzle:7.9.2 guzzlehttp/psr7:2.7.0 jasny/twig-extensions:1.3.1 monolog/monolog:3.8.0 php:8.4.1 phpunit/phpunit:10.5.38 psalm/plugin-phpunit:0.19.0 psr/log:3.0.2 symfony/yaml:7.1.6 vimeo/psalm:5.26.1 --with-dependencies --ignore-platform-req='ext-*' --ignore-platform-req='lib-*' --no-ansi --no-interaction --no-scripts --no-autoloader --no-plugins
Loading composer repositories with package information
Pattern "php" listed for update matches platform packages, but these cannot be updated by Composer.
Dependency twig/twig is also a root requirement. Package has not been listed as an update argument, so keeping locked at old version. Use --with-all-dependencies (-W) to include root dependencies.
Dependency webmozart/assert is also a root requirement. Package has not been listed as an update argument, so keeping locked at old version. Use --with-all-dependencies (-W) to include root dependencies.
Updating dependencies
Your requirements could not be resolved to an installable set of packages.

  Problem 1
    - Root composer.json requires vimeo/psalm ^5.26.1 -> satisfiable by vimeo/psalm[5.26.1].
    - vimeo/psalm 5.26.1 requires php ^7.4 || ~8.0.0 || ~8.1.0 || ~8.2.0 || ~8.3.0 -> your php version (8.4.1) does not satisfy that requirement.
  Problem 2
    - Root composer.json requires psalm/plugin-phpunit ^0.19.0 -> satisfiable by psalm/plugin-phpunit[0.19.0].
    - psalm/plugin-phpunit 0.19.0 requires vimeo/psalm dev-master || ^5@beta || ^5.0 -> satisfiable by vimeo/psalm[5.26.1].
    - vimeo/psalm 5.26.1 requires php ^7.4 || ~8.0.0 || ~8.1.0 || ~8.2.0 || ~8.3.0 -> your php version (8.4.1) does not satisfy that requirement.

Use the option --with-all-dependencies (-W) to allow upgrades, downgrades and removals for packages currently locked to specific versions.

| datasource  | package                    | from    | to      |
| ----------- | -------------------------- | ------- | ------- |
| docker      | composer                   | 2.6.6   | 2.8.3   |
| docker      | docker/dockerfile          | 1.6     | 1.12    |
| packagist   | guzzlehttp/guzzle          | 7.8.1   | 7.9.2   |
| packagist   | guzzlehttp/psr7            | 2.6.2   | 2.7.0   |
| packagist   | jasny/twig-extensions      | 1.3.0   | 1.3.1   |
| npm         | marked                     | 13.0.1  | 13.0.3  |
| packagist   | monolog/monolog            | 3.6.0   | 3.8.0   |
| docker      | node                       | 22.4.0  | 22.11.0 |
| github-tags | containerbase/php-prebuild | 8.3.3   | 8.4.1   |
| packagist   | phpunit/phpunit            | 10.5.20 | 10.5.38 |
| packagist   | psalm/plugin-phpunit       | 0.18.4  | 0.19.0  |
| packagist   | psr/log                    | 3.0.0   | 3.0.2   |
| packagist   | symfony/yaml               | 7.0.7   | 7.1.6   |
| packagist   | vimeo/psalm                | 5.23.1  | 5.26.1  |
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants