Commit e785794d authored by Alexandre Dias's avatar Alexandre Dias
Browse files

Merge branch 'ISAICP-7252' into 'develop'

ISAICP-7252: Fix SA-CORE-2022-012, 013, 014

See merge request digit/digit-joinup-dev!304
parents 47ecb505 c7ab4499
Pipeline #502567 passed with stages
in 14 seconds
......@@ -1785,26 +1785,26 @@
},
{
"name": "drupal/changed_fields",
"version": "3.4.0",
"version": "3.5.0",
"source": {
"type": "git",
"url": "https://git.drupalcode.org/project/changed_fields.git",
"reference": "8.x-3.4"
"reference": "8.x-3.5"
},
"dist": {
"type": "zip",
"url": "https://ftp.drupal.org/files/projects/changed_fields-8.x-3.4.zip",
"reference": "8.x-3.4",
"shasum": "1ec5008e7d3121ffba064f53c2c027faaf498125"
"url": "https://ftp.drupal.org/files/projects/changed_fields-8.x-3.5.zip",
"reference": "8.x-3.5",
"shasum": "eafecb0cc3542b49c1ffbbc5080c38572706a204"
},
"require": {
"drupal/core": "^8 || ^9"
"drupal/core": "^8 || ^9 || ^10"
},
"type": "drupal-module",
"extra": {
"drupal": {
"version": "8.x-3.4",
"datestamp": "1609627343",
"version": "8.x-3.5",
"datestamp": "1658255238",
"security-coverage": {
"status": "covered",
"message": "Covered by Drupal's security advisory policy"
......@@ -1955,16 +1955,16 @@
},
{
"name": "drupal/core",
"version": "9.4.2",
"version": "9.4.3",
"source": {
"type": "git",
"url": "https://github.com/drupal/core.git",
"reference": "5a4d6acc99e279f70a914804ff3dd08111707de1"
"reference": "7b1a403c093c7abc89ef3df1a6b05bdb19b3ffad"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/drupal/core/zipball/5a4d6acc99e279f70a914804ff3dd08111707de1",
"reference": "5a4d6acc99e279f70a914804ff3dd08111707de1",
"url": "https://api.github.com/repos/drupal/core/zipball/7b1a403c093c7abc89ef3df1a6b05bdb19b3ffad",
"reference": "7b1a403c093c7abc89ef3df1a6b05bdb19b3ffad",
"shasum": ""
},
"require": {
......@@ -2207,13 +2207,13 @@
],
"description": "Drupal is an open source content management platform powering millions of websites and applications.",
"support": {
"source": "https://github.com/drupal/core/tree/9.4.2"
"source": "https://github.com/drupal/core/tree/9.4.3"
},
"time": "2022-07-07T01:18:39+00:00"
"time": "2022-07-20T15:11:38+00:00"
},
{
"name": "drupal/core-composer-scaffold",
"version": "9.4.2",
"version": "9.4.3",
"source": {
"type": "git",
"url": "https://github.com/drupal/core-composer-scaffold.git",
......@@ -2257,7 +2257,7 @@
"drupal"
],
"support": {
"source": "https://github.com/drupal/core-composer-scaffold/tree/9.4.2"
"source": "https://github.com/drupal/core-composer-scaffold/tree/9.4.3"
},
"time": "2022-06-19T16:14:23+00:00"
},
......@@ -4043,20 +4043,20 @@
},
{
"name": "drupal/inline_entity_form",
"version": "1.0.0-rc11",
"version": "1.0.0-rc12",
"source": {
"type": "git",
"url": "https://git.drupalcode.org/project/inline_entity_form.git",
"reference": "8.x-1.0-rc11"
"reference": "8.x-1.0-rc12"
},
"dist": {
"type": "zip",
"url": "https://ftp.drupal.org/files/projects/inline_entity_form-8.x-1.0-rc11.zip",
"reference": "8.x-1.0-rc11",
"shasum": "67a92ec1482be19b2f2091ca9498f585e34072b9"
"url": "https://ftp.drupal.org/files/projects/inline_entity_form-8.x-1.0-rc12.zip",
"reference": "8.x-1.0-rc12",
"shasum": "eddee2964823b7da2ec7032ddb871f247ba7ed7a"
},
"require": {
"drupal/core": "^8.8 || ^9",
"drupal/core": "^8.8 || ^9 || ^10",
"php": ">=7.1"
},
"require-dev": {
......@@ -4065,8 +4065,8 @@
"type": "drupal-module",
"extra": {
"drupal": {
"version": "8.x-1.0-rc11",
"datestamp": "1648748863",
"version": "8.x-1.0-rc12",
"datestamp": "1658308069",
"security-coverage": {
"status": "not-covered",
"message": "RC releases are not covered by Drupal security advisories."
......@@ -9150,23 +9150,22 @@
},
{
"name": "laminas/laminas-servicemanager",
"version": "3.15.0",
"version": "3.15.1",
"source": {
"type": "git",
"url": "https://github.com/laminas/laminas-servicemanager.git",
"reference": "65910ef6a8066b0369fab77fbec9e030be59c866"
"reference": "216f972b179191b14c33a79337947b63bf7808ff"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/laminas/laminas-servicemanager/zipball/65910ef6a8066b0369fab77fbec9e030be59c866",
"reference": "65910ef6a8066b0369fab77fbec9e030be59c866",
"url": "https://api.github.com/repos/laminas/laminas-servicemanager/zipball/216f972b179191b14c33a79337947b63bf7808ff",
"reference": "216f972b179191b14c33a79337947b63bf7808ff",
"shasum": ""
},
"require": {
"composer-plugin-api": "^2.0",
"laminas/laminas-stdlib": "^3.2.1",
"php": "~7.4.0 || ~8.0.0 || ~8.1.0",
"psr/container": "^1.1 || ^2.0.2"
"psr/container": "^1.0"
},
"conflict": {
"ext-psr": "*",
......@@ -9175,14 +9174,16 @@
"zendframework/zend-servicemanager": "*"
},
"provide": {
"psr/container-implementation": "^1.1 || ^2.0"
"psr/container-implementation": "^1.0"
},
"replace": {
"container-interop/container-interop": "^1.2.0"
},
"require-dev": {
"composer/package-versions-deprecated": "^1.0",
"laminas/laminas-coding-standard": "~2.3.0",
"laminas/laminas-container-config-test": "^0.6",
"laminas/laminas-dependency-plugin": "^2.1.2",
"mikey179/vfsstream": "^1.6.10@alpha",
"ocramius/proxy-manager": "^2.11",
"phpbench/phpbench": "^1.1",
......@@ -9236,7 +9237,7 @@
"type": "community_bridge"
}
],
"time": "2022-07-18T21:18:56+00:00"
"time": "2022-07-20T09:48:45+00:00"
},
{
"name": "laminas/laminas-stdlib",
......@@ -11605,19 +11606,20 @@
},
{
"name": "solarium/solarium",
"version": "6.2.4",
"version": "6.2.5",
"source": {
"type": "git",
"url": "https://github.com/solariumphp/solarium.git",
"reference": "fcec5684ee3f2d73a8f06a9fbd0e25d2537e1ab2"
"reference": "b3de12c7c5bba3f9a5955729ff5f7938c2b79789"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/solariumphp/solarium/zipball/fcec5684ee3f2d73a8f06a9fbd0e25d2537e1ab2",
"reference": "fcec5684ee3f2d73a8f06a9fbd0e25d2537e1ab2",
"url": "https://api.github.com/repos/solariumphp/solarium/zipball/b3de12c7c5bba3f9a5955729ff5f7938c2b79789",
"reference": "b3de12c7c5bba3f9a5955729ff5f7938c2b79789",
"shasum": ""
},
"require": {
"composer-runtime-api": ">=2.0",
"ext-json": "*",
"php": "^7.3 || ^8.0",
"psr/event-dispatcher": "^1.0",
......@@ -11662,9 +11664,9 @@
],
"support": {
"issues": "https://github.com/solariumphp/solarium/issues",
"source": "https://github.com/solariumphp/solarium/tree/6.2.4"
"source": "https://github.com/solariumphp/solarium/tree/6.2.5"
},
"time": "2022-06-30T10:48:47+00:00"
"time": "2022-07-20T11:51:35+00:00"
},
{
"name": "spdx/license-list-data",
......@@ -20446,16 +20448,16 @@
},
{
"name": "phpstan/phpstan",
"version": "1.8.1",
"version": "1.8.2",
"source": {
"type": "git",
"url": "https://github.com/phpstan/phpstan.git",
"reference": "8dbba631fa32f4b289404469c2afd6122fd61d67"
"reference": "c53312ecc575caf07b0e90dee43883fdf90ca67c"
},
"dist": {
"type": "zip",
"url": "https://api.github.com/repos/phpstan/phpstan/zipball/8dbba631fa32f4b289404469c2afd6122fd61d67",
"reference": "8dbba631fa32f4b289404469c2afd6122fd61d67",
"url": "https://api.github.com/repos/phpstan/phpstan/zipball/c53312ecc575caf07b0e90dee43883fdf90ca67c",
"reference": "c53312ecc575caf07b0e90dee43883fdf90ca67c",
"shasum": ""
},
"require": {
......@@ -20481,7 +20483,7 @@
"description": "PHPStan - PHP Static Analysis Tool",
"support": {
"issues": "https://github.com/phpstan/phpstan/issues",
"source": "https://github.com/phpstan/phpstan/tree/1.8.1"
"source": "https://github.com/phpstan/phpstan/tree/1.8.2"
},
"funding": [
{
......@@ -20501,7 +20503,7 @@
"type": "tidelift"
}
],
"time": "2022-07-12T16:08:06+00:00"
"time": "2022-07-20T09:57:31+00:00"
},
{
"name": "phpstan/phpstan-deprecation-rules",
......
......@@ -490,6 +490,29 @@
*/
# $settings['file_public_path'] = 'sites/default/files';
/**
* Additional public file schemes:
*
* Public schemes are URI schemes that allow download access to all users for
* all files within that scheme.
*
* The "public" scheme is always public, and the "private" scheme is always
* private, but other schemes, such as "https", "s3", "example", or others,
* can be either public or private depending on the site. By default, they're
* private, and access to individual files is controlled via
* hook_file_download().
*
* Typically, if a scheme should be public, a module makes it public by
* implementing hook_file_download(), and granting access to all users for all
* files. This could be either the same module that provides the stream wrapper
* for the scheme, or a different module that decides to make the scheme
* public. However, in cases where a site needs to make a scheme public, but
* is unable to add code in a module to do so, the scheme may be added to this
* variable, the result of which is that system_file_download() grants public
* access to all files within that scheme.
*/
# $settings['file_additional_public_schemes'] = ['example'];
/**
* Private file path:
*
......
Supports Markdown
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment