Skip to content

Bump api-platform/core from 2.7.18 to 3.4.17 #6208

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump api-platform/core from 2.7.18 to 3.4.17 #6208

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 8, 2025

Bumps api-platform/core from 2.7.18 to 3.4.17.

Release notes

Sourced from api-platform/core's releases.

v3.4.17

Exceptional release as 3.4 is not maintained anymore, this resolves our recent security issues:

GHSA-cg3c-245w-728m GHSA-428q-q3vv-3fq3

What's Changed

Full Changelog: api-platform/core@v3.4.16...v3.4.17

v3.4.15

What's Changed

Full Changelog: api-platform/core@v3.4.14...v3.4.15

v3.4.14

What's Changed

Full Changelog: api-platform/core@v3.4.10...v3.4.14

v3.4.10

What's Changed

Full Changelog: api-platform/core@v3.4.9...v3.4.10

v3.4.9

What's Changed

Notes

  • Parameter::getValue() now takes a default value as argument getValue(mixed $default = new ParameterNotFound()): mixed

... (truncated)

Changelog

Sourced from api-platform/core's changelog.

v3.4.17

Bug fixes

  • 55712452b fix(graphql): access to unauthorized resource using node Relay
  • 7cb5a6db8 fix: allow parameter provider as object (#7032)
  • cba3acfbd fix(graphql): property security might be cached w/ different objects
  • da2e86809 fix: header parameter should be case insensitive (#7031)
  • f4c426d71 Revert "fix(doctrine): throw an exception when a filter is not found in a par…" (#7046)

v3.4.16

Bug fixes

  • dc4fc84ba fix(graphql): securityAfterResolver not called
  • 9eb5c4e94 fix(symfony): suggest DocumentationAction as replacement for deprecated SwaggerUiAction (#6894)

v3.4.15

Bug fixes

  • ab03b5544 fix(openapi): typing issue with openapiContext in #[ApiProperty] (#6910)

v3.4.14

Bug fixes

  • 0cf752bce fix(metadata): make the schema attribute to fallback to null for parameters in YamlResourceExtractor (#6896)
  • 2b3c55db2 fix(symfony): remove unsolvable deprecation (#6899) see also (#6655)
  • 9493b9b6e fix(symfony): revert json schema bc break (#6903)
  • b82f9ac76 fix(openapi): not forbidden response on openAPI doc (#6886)

I mispublished a v3.4.13 on some repositories to fix them all I bumped 3.4.10 to 3.4.14 More details at #6888.

v3.4.10

Bug fixes

  • 2ee5eb496 fix(symfony): mercure exception formatting by calling array_keys() (#6879)

v3.4.9

Bug fixes

  • 22cbd0147 fix(metadata): various parameter improvements (#6867)
  • 978975ef0 fix(jsonschema): hashmaps produces invalid openapi schema (#6830)
  • a209dd440 fix: add missing error normalizer trait and remove deprecated interface (#6853)
  • abbc031ee fix: test empty parameter against null (#6852)

... (truncated)

Commits
  • c5fb664 docs: changelog 3.4.17
  • 945ae51 chore: remove 4.0 test
  • c65015e test: various fixes (#7063)
  • 5571245 fix(graphql): access to unauthorized resource using node Relay
  • cba3acf fix(graphql): property security might be cached w/ different objects
  • f4c426d Revert "fix(doctrine): throw an exception when a filter is not found in a par...
  • da2e868 fix: header parameter should be case insensitive (#7031)
  • 7cb5a6d fix: allow parameter provider as object (#7032)
  • 7c52f34 test: guides migration table exist (#6931)
  • 64c6e10 docs: v3.4.16
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump api-platform/core from 2.7.18 to 3.4.17
6710092 
Bumps [api-platform/core](https://github.com/api-platform/core) from 2.7.18 to 3.4.17.
- [Release notes](https://github.com/api-platform/core/releases)
- [Changelog](https://github.com/api-platform/core/blob/v3.4.17/CHANGELOG.md)
- [Commits](api-platform/core@v2.7.18...v3.4.17)

---
updated-dependencies:
- dependency-name: api-platform/core
  dependency-version: 3.4.17
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Apr 8, 2025
@dependabot dependabot bot mentioned this pull request Apr 8, 2025
Closed
@codeclimate CodeClimate
Copy link

codeclimate bot commented Apr 8, 2025

Code Climate has analyzed commit 6710092 and detected 0 issues on this pull request.

View more on Code Climate.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file php Pull requests that update Php code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants