Skip to content

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Aug 26, 2025

Bumps guzzlehttp/guzzle from 7.7.1 to 7.10.0.

Release notes

Sourced from guzzlehttp/guzzle's releases.

Release 7.10.0

Added

  • Support for PHP 8.5

Changed

  • Adjusted guzzlehttp/promises version constraint to ^2.3
  • Adjusted guzzlehttp/psr7 version constraint to ^2.8

Release 7.9.3

Changed

  • Remove explicit content-length header for GET requests
  • Improve compatibility with bad servers for boolean cookie values

Release 7.9.2

Fixed

  • Adjusted handler selection to use cURL if its version is 7.21.2 or higher, rather than 7.34.0

Release 7.9.1

Fixed

  • Fix TLS 1.3 check for HTTP/2 requests

Release 7.9.0

Changed

  • Improve protocol version checks to provide feedback around unsupported protocols
  • Only select the cURL handler by default if 7.34.0 or higher is linked
  • Improved CurlMultiHandler to avoid busy wait if possible
  • Dropped support for EOL guzzlehttp/psr7 v1
  • Improved URI user info redaction in errors

Release 7.8.2

Added

  • Support for PHP 8.4

Release 7.8.1

Changed

  • Updated links in docs to their canonical versions
  • Replaced call_user_func* with native calls

Release 7.8.0

See change log for changes.

Changelog

Sourced from guzzlehttp/guzzle's changelog.

7.10.0 - 2025-08-23

Added

  • Support for PHP 8.5

Changed

  • Adjusted guzzlehttp/promises version constraint to ^2.3
  • Adjusted guzzlehttp/psr7 version constraint to ^2.8

7.9.3 - 2025-03-27

Changed

  • Remove explicit content-length header for GET requests
  • Improve compatibility with bad servers for boolean cookie values

7.9.2 - 2024-07-24

Fixed

  • Adjusted handler selection to use cURL if its version is 7.21.2 or higher, rather than 7.34.0

7.9.1 - 2024-07-19

Fixed

  • Fix TLS 1.3 check for HTTP/2 requests

7.9.0 - 2024-07-18

Changed

  • Improve protocol version checks to provide feedback around unsupported protocols
  • Only select the cURL handler by default if 7.34.0 or higher is linked
  • Improved CurlMultiHandler to avoid busy wait if possible
  • Dropped support for EOL guzzlehttp/psr7 v1
  • Improved URI user info redaction in errors

7.8.2 - 2024-07-18

Added

  • Support for PHP 8.4

... (truncated)

Commits
  • b51ac70 Release 7.10.0
  • af24c69 Use the http_get_last_response_headers function (#3301)
  • 2be2ee8 Remove obsolete reference capturing of $http_response_header (#3294)
  • c6420f2 Add PHP 8.5 support (#3300)
  • 7b2f29f Release 7.9.3
  • 8f68d9f Improve compatibility with bad servers for boolean cookie values (#3281)
  • 234747f Remove explicit content-length header for GET requests (#3278)
  • d28a072 testHandlesGarbageHttpServerGracefully: Split test between PHP <= 8.1 and >...
  • 41f5ce7 CS fixes
  • 0811cfd SA upgrades
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [guzzlehttp/guzzle](https://github.com/guzzle/guzzle) from 7.7.1 to 7.10.0.
- [Release notes](https://github.com/guzzle/guzzle/releases)
- [Changelog](https://github.com/guzzle/guzzle/blob/7.10/CHANGELOG.md)
- [Commits](guzzle/guzzle@7.7.1...7.10.0)

---
updated-dependencies:
- dependency-name: guzzlehttp/guzzle
  dependency-version: 7.10.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels Aug 26, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file php Pull requests that update php code
Development

Successfully merging this pull request may close these issues.

0 participants