aboutsummaryrefslogtreecommitdiffstats
path: root/composer.lock
Commit message (Collapse)AuthorAgeFilesLines
* Add PHPStan as a developer dependency.Harald Eilertsen10 days1-1/+59
| | | | | | | | | | | | | | | | | | | | | | | | PHPStan is a static PHP code analyzer that's aimed at finding actual bugs in the code. Where PHP Code Sniffer is about codeing standards, PHPStan is about correctness of code. The provided configuration file (`phpstan.neon.dist`) is configured to use the _lowest_ level of checks that PHPStan will report on. See https://phpstan.org/user-guide/rule-levels for information about the various rule levels. Run an analysis of the code base like this: % ./vendor/bin/phpstan It will output any found issues to stdout. You can also run it like this: % ./vendor/bin/phpstan --error-format=raw > phpstan.log This will give you an output file in a format that's suitable for use with typical editors for mapping errors to source locations.
* Update php-epub-meta and use composer for dep handling.Harald Eilertsen13 days1-2/+151
| | | | | | Note that we upgrade to the 2.x branch of the dependency, as the 3.x branch requires PHP version 8.2 or later. There's no reason for us to move our minimum supported version of PHP just yet.
* update symfony/polyfill-php81Mario2024-09-301-7/+7
|
* update sabre/vobjectMario2024-09-301-5/+5
|
* update spomky-labs/otphpMario2024-09-301-11/+11
|
* update ramsey/uuidMario2024-09-301-7/+7
|
* update scssphpMario2024-09-301-6/+6
|
* deps: Upgrade smarty/smarty to version 4.5.4Harald Eilertsen2024-09-281-6/+6
| | | | | | | | | | | | | | | | | | | This eliminates a potential vulnerability where an template author could inject arbitrary PHP files to be run via the 'extends' tag. See: - https://github.com/smarty-php/smarty/security/advisories/GHSA-4rmg-292m-wg3w - https://github.com/smarty-php/smarty/commit/0be92bc8a6fb83e6e0d883946f7e7c09ba4e857a Impact assessment: In our case I would consider this a low severity issue as we don't allow users to dynamically add or edit smarty templates. Templates has to be updated via merge requests, or by installing a theme. In both cases a malicious attacker already has easier ways to inject whatever code they want. Further, the extend tag is not in use in any of our core templates.
* Don't autoload test cases using composer.Harald Eilertsen2024-09-241-4/+6
| | | | | | | Introduces a bootstrap file that ensures that the base test case classes are loaded and available instead. This reduces the number of warnings when running composer install.
* this will be a longer journey - we will start to use bootstrap icons now ↵Mario2024-07-231-4/+41
| | | | since forkawesome is dead
* Upgrade test framework to PHPUnit 10.5Harald Eilertsen2024-05-271-427/+340
|
* more composer weirdnessMario2024-03-161-1/+1
|
* Revert "another attmpt to install streams/php-jcs via composer"Mario2024-03-161-57/+59
| | | This reverts commit 5af3c3577843a6f65c402c27607edca98233c08e
* another attmpt to install streams/php-jcs via composerMario2024-03-151-59/+57
|
* revert adding of zip and bump composer php version to 8.1Mario2024-03-141-2/+2
|
* Revert "next try to use the streams php-jcs library until the floats issue ↵Mario2024-03-141-57/+59
| | | | | | will be fixed upstream. see here for reference https://codeberg.org/streams/streams/issues/151" This reverts commit 70dfce356b949dce00dba534536be994b1d7761d.
* next try to use the streams php-jcs library until the floats issue will be ↵Mario2024-03-141-59/+57
| | | | fixed upstream. see here for reference https://codeberg.org/streams/streams/issues/151
* Revert "use the streams php-jcs library until the floats issue will be fixed ↵Mario2024-03-141-57/+59
| | | | | | upstream. see here for reference https://codeberg.org/streams/streams/issues/151" This reverts commit 81ce67df942d4bf378814677268fe03a29ecc028.
* Revert "update lock file"Mario2024-03-141-2/+1
| | | | This reverts commit a93fed5ae250533af1682cfc721459d6bae9b263.
* Revert "revert addition of zip"Mario2024-03-141-1/+2
| | | | This reverts commit 55532c7cb1fee208893fc13c372acf703830529b.
* revert addition of zipMario2024-03-141-2/+1
|
* update lock fileMario2024-03-141-1/+2
|
* use the streams php-jcs library until the floats issue will be fixed ↵Mario2024-03-141-59/+57
| | | | upstream. see here for reference https://codeberg.org/streams/streams/issues/151
* Revert "composer update and use the fixed streams php-jcs library until the ↵Mario2024-03-141-513/+542
| | | | | | floats issue will be fixed upstream. see here for reference https://codeberg.org/streams/streams/issues/151" This reverts commit 6bf61dfa6b585db01b607a79bd64ec9c583a9c10.
* composer update and use the fixed streams php-jcs library until the floats ↵Mario2024-03-141-542/+513
| | | | issue will be fixed upstream. see here for reference https://codeberg.org/streams/streams/issues/151
* update composer libsMario2024-03-061-29/+28
|
* custom sass bootstrap builds for channels and siteMario2024-02-101-1/+81
|
* Remove behat as dev dependency.Harald Eilertsen2024-01-071-2011/+8
| | | | | | | | | As the Symphony\Yaml stuff disappeared with behat, we need another way to load read the yaml files with database fixtures for the integration tests. As the php yaml extension is not distributed with PHP by default, this creates it as another dev dependency!
* composer add mmccook/php-json-canonicalization-schemeMario2024-01-031-1/+59
|
* comÃposer add tephenhill/base58Mario2024-01-031-1/+43
|
* update symfony/polyfill-php81Mario2024-01-031-7/+7
|
* update sabre/vobjectMario2024-01-031-5/+5
|
* update ramsey/uuidMario2024-01-031-6/+6
|
* update ezyang/htmlpurifierMario2024-01-031-7/+7
|
* update sabre/davMario2024-01-031-14/+11
|
* use new lang detect library which supports much more languagesMario2023-10-071-1/+52
|
* composer update html to markdownMario2023-10-051-9/+9
|
* composer update oauth2 serverMario2023-10-051-10/+9
|
* composer update smartyMario2023-10-051-6/+6
|
* composer update bootstrapMario2023-10-051-8/+9
|
* update bootstrap to version 5.3Mario2023-06-021-8/+7
|
* update composer libsMario2023-05-301-365/+71
|
* update bootstrapMario2023-04-281-7/+7
|
* port totp mfa from streams with some adjustionsMario2023-03-081-1/+290
|
* update simplepieMario2023-01-271-7/+8
|
* update smartyMario2023-01-271-6/+6
|
* native dark theme initial checkinMario2023-01-201-7/+8
|
* composer update michelf/php-markdownMario2022-10-121-9/+12
|
* composer update jbroadway/urlifyMario2022-10-121-13/+13
|
* composer update bshaffer/oauth2-server-phpMario2022-10-121-6/+6
|