Skip to content

chore(deps): update dependency composer/composer to v2.9.2 #207

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

chore(deps): update dependency composer/composer to v2.9.2 #207

wants to merge 1 commit into from

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Nov 20, 2025
edited
Loading

This PR contains the following updates:

Package Update Change
composer/composer minor 2.8.12 -> 2.9.2

Release Notes

composer/composer (composer/composer)

v2.9.2

Compare Source

  • Added new --no-security-blocking flag to disable/configure security blocking (#​12617)
    • Added a way to set audit > ignore to act only on audits or only on security blocking (#​12618, #​12612)
    • Fixed config command not being able to set the new audit settings (#​12609)
    • Fixed handling audit.ignore to support CVE ids while doing security blocking, but advisory IDs are still preferred for performance reasons (#​12624)
    • Fixed partial updates failing when another package in the lock file has a known security advisory (#​12626)

v2.9.1

Compare Source

  • Fixed regression in phpunit binary proxies (#​12601)
    • Fixed script handler autoloading issues (#​12606)
    • Fixed null call of Command::setDescription in some cases (#​12605)
    • Fixed --prefer-lowest builds sometimes failing due to the filtering of versions with known vulnerabilities (#​12603)

v2.9.0

Compare Source

  • Fixed a couple minor issues with --bump-after-update (#​12598)
    • Various docs fixes

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot added the renovate label Nov 20, 2025
@renovate renovate bot enabled auto-merge November 20, 2025 11:34
@coderabbitai
Copy link

coderabbitai bot commented Nov 20, 2025

Important

Review skipped

Auto reviews are disabled on this repository.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@renovate renovate bot force-pushed the renovate/composer-composer-2.x branch from 1e40c7a to 4b90b01 Compare November 20, 2025 15:27
@renovate renovate bot changed the title chore(deps): update dependency composer/composer to v2.9.0 chore(deps): update dependency composer/composer to v2.9.1 Nov 20, 2025
@renovate renovate bot force-pushed the renovate/composer-composer-2.x branch from 4b90b01 to 83c0e32 Compare November 26, 2025 23:26
@renovate renovate bot changed the title chore(deps): update dependency composer/composer to v2.9.1 chore(deps): update dependency composer/composer to v2.9.2 Nov 26, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

renovate

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant