X Tutup
Skip to content

Bump phpseclib/phpseclib from 3.0.16 to 3.0.17#40449

Merged
phil-davis merged 2 commits intomasterfrom
dependabot/composer/phpseclib/phpseclib-3.0.17
Oct 25, 2022
Merged

Bump phpseclib/phpseclib from 3.0.16 to 3.0.17#40449
phil-davis merged 2 commits intomasterfrom
dependabot/composer/phpseclib/phpseclib-3.0.17

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 24, 2022
edited by phil-davis
Loading

Bumps phpseclib/phpseclib from 3.0.16 to 3.0.17.

Release notes

Sourced from phpseclib/phpseclib's releases.

3.0.17

  • X509: make it so CRLs, CSRs and SPKACs can support PSS keys (#1837)
  • X509: make it so PKCS1 X509 certs can create PSS sigs (#1837)
  • SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#1841)
  • SFTP: restore orig behavior when deleting non-existant folder (#1847)
  • Random: fix fallback on PHP 8.1+
Changelog

Sourced from phpseclib/phpseclib's changelog.

3.0.17 - 2022-10-24

  • X509: make it so CRLs, CSRs and SPKACs can support PSS keys (#1837)
  • X509: make it so PKCS1 X509 certs can create PSS sigs (#1837)
  • SFTP: fix deprecated implicit float to int on 32-bit PHP 8.1 (#1841)
  • SFTP: restore orig behavior when deleting non-existant folder (#1847)
  • Random: fix fallback on PHP 8.1+
Commits
  • dbc2307 Merge branch '1.0' into 3.0
  • f3a0e2b CHANGELOG: add 2.0.39 release
  • a10a3b8 Merge branch '2.0' into 3.0
  • 2ed7453 Merge branch '1.0' into 2.0
  • 24845cc delete of non-existent folder returns true when it used to ret
  • 4f53331 SSH2: rm if condition that can't ever be true in 3.0+
  • f0a146e X509: make it so PKCS1 X509 certs can create PSS sigs
  • df21050 Tests/X509: add test for PSS signed CRL signed by PKCS1 X509
  • 9158033 CS adjustment
  • b54eeb8 X509: make it so CRLs, CSRs and SPKACs can support PSS keys
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Also fixes #40445

And updates PHP dependencies in apps/files_external/3rdparty:

phil@phil-Inspiron-5468:~/git/owncloud/core/apps/files_external/3rdparty$ composer update
Loading composer repositories with package information
Updating dependencies
Lock file operations: 1 install, 2 updates, 6 removals
  - Removing guzzlehttp/psr7 (2.4.1)
  - Removing paragonie/constant_time_encoding (v2.6.3)
  - Removing paragonie/random_compat (v9.99.100)
  - Removing phpseclib/phpseclib (3.0.14)
  - Removing psr/http-factory (1.0.1)
  - Removing ralouphie/getallheaders (3.0.3)
  - Upgrading google/apiclient-services (v0.259.0 => v0.272.0)
  - Upgrading google/auth (v1.21.1 => v1.23.0)
  - Locking roave/security-advisories (dev-latest 599b9d6)
Writing lock file
Installing dependencies from lock file (including require-dev)
Package operations: 1 install, 2 updates, 6 removals
  - Downloading google/apiclient-services (v0.272.0)
  - Removing ralouphie/getallheaders (3.0.3)
  - Removing psr/http-factory (1.0.1)
  - Removing phpseclib/phpseclib (3.0.14)
  - Removing paragonie/random_compat (v9.99.100)
  - Removing paragonie/constant_time_encoding (v2.6.3)
  - Removing guzzlehttp/psr7 (2.4.1)
  - Upgrading google/auth (v1.21.1 => v1.23.0): Extracting archive
  - Upgrading google/apiclient-services (v0.259.0 => v0.272.0): Extracting archive
  - Installing roave/security-advisories (dev-latest 599b9d6)
Generating optimized autoload files
> Google\Task\Composer::cleanup
Removing 250 google services
2 packages you are using are looking for funding.
Use the `composer fund` command to find out more!

@dependabot
Bump phpseclib/phpseclib from 3.0.16 to 3.0.17
76e0f55 
Bumps [phpseclib/phpseclib](https://github.com/phpseclib/phpseclib) from 3.0.16 to 3.0.17.
- [Release notes](https://github.com/phpseclib/phpseclib/releases)
- [Changelog](https://github.com/phpseclib/phpseclib/blob/master/CHANGELOG.md)
- [Commits](phpseclib/phpseclib@3.0.16...3.0.17)

---
updated-dependencies:
- dependency-name: phpseclib/phpseclib
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies php Pull requests that update Php code labels Oct 24, 2022
@dependabot dependabot bot requested a review from phil-davis October 24, 2022 22:05
@phil-davis
Copy link
Contributor

phil-davis commented Oct 25, 2022

Note: I will add a commit to this that bumps phpseclib in apps/files_external/3rdparty

@phil-davis phil-davis mentioned this pull request Oct 25, 2022
Closed
11 tasks
@owncloud owncloud deleted a comment from update-docs bot Oct 25, 2022
@phil-davis phil-davis mentioned this pull request Oct 25, 2022
Closed
@sonarqubecloud
Copy link

sonarqubecloud bot commented Oct 25, 2022

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information

@phil-davis phil-davis merged commit a6b1554 into master Oct 25, 2022
@delete-merged-branch delete-merged-branch bot deleted the dependabot/composer/phpseclib/phpseclib-3.0.17 branch October 25, 2022 04:27
@phil-davis phil-davis mentioned this pull request Oct 28, 2022
Closed
11 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@phil-davis phil-davis phil-davis approved these changes

Assignees

@phil-davis phil-davis

Labels

dependencies php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

files_external 3rdparty composer errors

1 participant

@phil-davis
X Tutup