Seldaek
Repos
254
Followers
4202
Following
1

Dependency Manager for PHP

26967
4061

Sends your logs to files, sockets, inboxes, databases and various web services

19923
1787

The Symfony PHP framework

27485
8584

HTML Presentations

820
46

PHP Debug Console

520
77

JSON Lint for PHP

1271
51

Events

started
Created at 1 day ago
issue comment
[Console] Handle case where user tries to complete more arguments than there are available

Note that my PR also targets 5.4, but anyway thanks for the fix here!

Created at 5 days ago

Bump actions/stale from 5 to 6 (#11084)

Bumps actions/stale from 5 to 6.


updated-dependencies:

  • dependency-name: actions/stale dependency-type: direct:production update-type: version-update:semver-major ...

Signed-off-by: dependabot[bot] support@github.com

Signed-off-by: dependabot[bot] support@github.com Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

Created at 1 week ago
pull request closed
Bump actions/stale from 5 to 6

Bumps actions/stale from 5 to 6.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Created at 1 week ago
issue comment
unknown error after host machine update

OK, that's when we updated symfony/process & co from 2.8 to 5.4 in Composer, so possibly something there.

One would need to investigate further what is breaking in the artisan command and then maybe we can have a better guess at what is causing it though.

@themsaid @driesvints sorry for the spam but anyone from Laravel side perhaps willing to help out here?

Created at 1 week ago
issue comment
Docker needs COMPOSER_ALLOW_SUPERUSER when running plugins inside Dockerfile since 2.4.2

Most likely due to https://github.com/composer/composer/commit/a75fbf0e6a705addc8421d253807be0208588b12 yes.

Our docker detection is just file_exists('/.dockerenv'). Maybe this does not work in whatever you are doing?

I think I see the problem is that you are using a script command alias when running composer vendor-expose copy which requires us to load plugin commands to ensure there is no conflict between plugin commands and the script name.. If you ran composer run-script vendor-expose copy it should work fine as it will realize this is a composer command (run-script) and it will not attempt loading plugins.

That said.. I'd be interested in figuring out if we can improve the docker detection so that things just work.

Created at 1 week ago
issue comment
unknown error after host machine update

2.0.9 to 2.4.2 is a big version range.. if you can pinpoint which version exactly caused the problem maybe we can figure it out. composer self-update 2.3.0 for example to try that version, etc.

Created at 1 week ago
issue comment
unknown error after host machine update
> post-autoload-dump: @php artisan package:discover --ansi
Executing command (CWD): '/usr/bin/php8.1' -d allow_url_fopen='1' -d disable_functions='' -d memory_limit='-1' artisan package:discover --ansi

<comment>In LoadConfiguration.php line 66:</comment>
<error>    </error>
<error>    </error>
<error>    </error>

Try adding --verbose to your artisan command, perhaps the failure will include a stack trace then? Because the above LoadConfiguration.php is AFAIK not in composer. My best guess is the failure is https://github.com/laravel/framework/blob/9.x/src/Illuminate/Foundation/Bootstrap/LoadConfiguration.php#L66 - but why that would fail I have absolutely no clue.

Created at 2 weeks ago
issue comment
--ignore-platform-req=php+ reversed when using --prefer-lowest

Yeah I am not sure what we can do about this. prefer-lowest is hard because all lowest dependencies of all your dependencies need to be absolutely correct and often things just work by chance as prefer-highest is the default..

IMO doing prefer-lowest on latest PHP is bound to cause pain. I always run prefer-lowest on the oldest supported PHP to ensure that all the old stuff works together, but if someone runs latest PHP version I do expect them to also reasonably update software to working versions.

Created at 2 weeks ago
closed issue
--ignore-platform-req=php+ reversed when using --prefer-lowest

When --ignore-platform-req=php+ --prefer-lowest is used, composer ignores the lower boundary of php. This is not the desired behavior imho, --prefer-lowest should not affect to the platform requirements.

Created at 2 weeks ago

Add "--dry-run" to bump command (#11047)

Created at 2 weeks ago
issue comment
Add "--dry-run" to bump command

Thanks

Created at 2 weeks ago
pull request closed
Add "--dry-run" to bump command

With this flag it would be possible to run composer bump --dry-run as a part of CI - to keep synced composer.json and composer.lock.

When run on this repo:

$ php ./bin/compile 
$ php composer.phar bump --dry-run
Warning: Bumping dependency constraints is not recommended for libraries as it will narrow down your dependencies and may cause problems for your users.
./composer.json would be updated with:
 - require.composer/ca-bundle: ^1.3.3
 - require.composer/semver: ^3.3.2
 - require.justinrainbow/json-schema: ^5.2.12
 - require.psr/log: ^1.1.4 || ^2.0 || ^3.0
 - require.seld/jsonlint: ^1.9
 - require.seld/phar-utils: ^1.2.1
 - require.symfony/console: ^5.4.12 || ^6.0.11
 - require.symfony/filesystem: ^5.4.12 || ^6.0
 - require.symfony/finder: ^5.4.11 || ^6.0
 - require.symfony/process: ^5.4.11 || ^6.0
 - require.react/promise: ^2.9
 - require.symfony/polyfill-php73: ^1.26
 - require.symfony/polyfill-php80: ^1.26
 - require.seld/signal-handler: ^2.0.1
 - require-dev.symfony/phpunit-bridge: ^6.1.3
 - require-dev.phpstan/phpstan: ^1.8.3
 - require-dev.phpstan/phpstan-phpunit: ^1.1.1
 - require-dev.phpstan/phpstan-strict-rules: ^1.4.3
 - require-dev.phpstan/phpstan-symfony: ^1.2.13
$ echo $?
1

I've swapped the order of if (!$input->getOption('dev-only')) and if (!$input->getOption('no-dev-only')), so when there are packages in both to update then require is shown first.

Created at 2 weeks ago

Fix many more phpstan errors, down to 11 in baseline 🥳

Created at 2 weeks ago

Fix many phpstan errors

Created at 2 weeks ago

Return a proper 404 when a version fails to be loaded

Created at 2 weeks ago

Extract callback validators into service classes

Created at 2 weeks ago
issue comment
Type specifying extension for ValidatingArrayLoader

Yes, those where the value isn't checked cannot bring any information, but we also don't need the type info in those cases. They're just used to eliminate broken data and generate errors/warnings.

Anyway as I said if this sounds like too much trouble whatever let's skip it :)

Created at 2 weeks ago
issue comment
GitLab authentication issue over HTTPS

OK, no worries. As per @glaubinix's suggestion in 2.5+ Composer will auto-configure gitlab-domains/github-domains if auth is present, that would prevent any such mistake from occurring.

See 22bedfd8d

Created at 2 weeks ago

Add autoconfiguration of gitlab-domains/github-domains when auth is present for custom domains, fixes #11062

Created at 2 weeks ago

remove unused variable in ValidatingArrayLoader (#11063)

Created at 2 weeks ago
pull request closed
remove unused variable in ValidatingArrayLoader
Created at 2 weeks ago
issue comment
"composer outdated" suggest package with lower version

Install should definitely error.. but outdated isn't (at least currently) made to check for these inconsistencies.

Created at 2 weeks ago
issue comment
GitLab authentication issue over HTTPS

Ok well I am not sure maybe someone more familiar with GitLab can help here..

Created at 2 weeks ago
closed issue
Composer remove folder of some package (unexpectedly) and marking them as installed

My composer.json:

{
    "name": "antweb/sandbox",
    "autoload": {
        "psr-4": {
        }
    },
    "repositories": [
        {
            "type": "composer",
            "url": "https://asset-packagist.org"
        }
	],
    "minimum-stability": "dev",
    "authors": [
        {
            "name": "Hui Yang",
            "email": "chy1988@antwebstudio.com"
        }
    ],
    "require": {
        "antweb/yii2-core-module": "@dev"
    },
    "config": {
        "allow-plugins": {
            "yiisoft/yii2-composer": true,
            "antweb/yii2-module-composer": true
        }
    }
}

Output of composer diagnose:

Checking composer.json: WARNING
No license specified, it is recommended to do so. For closed-source software you may use "proprietary" as license.
require.antweb/yii2-core-module : unbound version constraints (@dev) should be avoided
Checking platform settings: OK
Checking git settings: OK git version 2.37.1
Checking http connectivity to packagist: OK
Checking https connectivity to packagist: OK
Checking github.com oauth access: OK
Checking disk free space: OK
Checking pubkeys:
Tags Public Key Fingerprint: 57815BA2 7E54DC31 7ECC7CC5 573090D0  87719BA6 8F3BB723 4E5D42D0 84A14642
Dev Public Key Fingerprint: 4AC45767 E5EC2265 2F0C1167 CBBB8A2B  0C708369 153E328C AD90147D AFE50952
OK
Checking composer version: OK
Composer version: 2.4.2
PHP version: 7.4.26
PHP binary path: D:\wamp64\bin\php\php7.4.26\php.exe
OpenSSL version: OpenSSL 1.1.1l  24 Aug 2021
cURL version: 7.70.0 libz 1.2.11 ssl OpenSSL/1.1.1l
zip: extension present, unzip not available, 7-Zip not available

When I run this command: composer update --vvv

composer install -vvv

I get the following output:

Running 2.4.2 (2022-09-14 16:11:15) with PHP 7.4.26 on Windows NT / 10.0
Reading ./composer.json (D:\wamp64\www\ant\sandbox\composer.json)
Loading config file C:/Users/chy19/AppData/Roaming/Composer/auth.json
Loading config file ./composer.json (D:\wamp64\www\ant\sandbox\composer.json)
Checked CA file /etc/pki/tls/certs/ca-bundle.crt does not exist or it is not a file.
Checked directory /etc/pki/tls/certs/ca-bundle.crt does not exist or it is not a directory.
Checked CA file /etc/ssl/certs/ca-certificates.crt does not exist or it is not a file.
Checked directory /etc/ssl/certs/ca-certificates.crt does not exist or it is not a directory.
Checked CA file /etc/ssl/ca-bundle.pem does not exist or it is not a file.
Checked directory /etc/ssl/ca-bundle.pem does not exist or it is not a directory.
Checked CA file /usr/local/share/certs/ca-root-nss.crt does not exist or it is not a file.
Checked directory /usr/local/share/certs/ca-root-nss.crt does not exist or it is not a directory.
Checked CA file /usr/ssl/certs/ca-bundle.crt does not exist or it is not a file.
Checked directory /usr/ssl/certs/ca-bundle.crt does not exist or it is not a directory.
Checked CA file /opt/local/share/curl/curl-ca-bundle.crt does not exist or it is not a file.
Checked directory /opt/local/share/curl/curl-ca-bundle.crt does not exist or it is not a directory.
Checked CA file /usr/local/share/curl/curl-ca-bundle.crt does not exist or it is not a file.
Checked directory /usr/local/share/curl/curl-ca-bundle.crt does not exist or it is not a directory.
Checked CA file /usr/share/ssl/certs/ca-bundle.crt does not exist or it is not a file.
Checked directory /usr/share/ssl/certs/ca-bundle.crt does not exist or it is not a directory.
Checked CA file /etc/ssl/cert.pem does not exist or it is not a file.
Checked directory /etc/ssl/cert.pem does not exist or it is not a directory.
Checked CA file /usr/local/etc/ssl/cert.pem does not exist or it is not a file.
Checked directory /usr/local/etc/ssl/cert.pem does not exist or it is not a directory.
Checked CA file /usr/local/etc/openssl/cert.pem does not exist or it is not a file.
Checked directory /usr/local/etc/openssl/cert.pem does not exist or it is not a directory.
Checked CA file /usr/local/etc/openssl@1.1/cert.pem does not exist or it is not a file.
Checked directory /usr/local/etc/openssl@1.1/cert.pem does not exist or it is not a directory.
Checked CA file /etc/pki/tls/certs does not exist or it is not a file.
Checked directory /etc/pki/tls/certs does not exist or it is not a directory.
Checked CA file /etc/ssl/certs does not exist or it is not a file.
Checked directory /etc/ssl/certs does not exist or it is not a directory.
Checked CA file /etc/ssl does not exist or it is not a file.
Checked directory /etc/ssl does not exist or it is not a directory.
Checked CA file /usr/local/share/certs does not exist or it is not a file.
Checked directory /usr/local/share/certs does not exist or it is not a directory.
Checked CA file /usr/ssl/certs does not exist or it is not a file.
Checked directory /usr/ssl/certs does not exist or it is not a directory.
Checked CA file /opt/local/share/curl does not exist or it is not a file.
Checked directory /opt/local/share/curl does not exist or it is not a directory.
Checked CA file /usr/local/share/curl does not exist or it is not a file.
Checked directory /usr/local/share/curl does not exist or it is not a directory.
Checked CA file /usr/share/ssl/certs does not exist or it is not a file.
Checked directory /usr/share/ssl/certs does not exist or it is not a directory.
Checked CA file /etc/ssl does not exist or it is not a file.
Checked directory /etc/ssl does not exist or it is not a directory.
Checked CA file /usr/local/etc/ssl does not exist or it is not a file.
Checked directory /usr/local/etc/ssl does not exist or it is not a directory.
Checked CA file /usr/local/etc/openssl does not exist or it is not a file.
Checked directory /usr/local/etc/openssl does not exist or it is not a directory.
Checked CA file /usr/local/etc/openssl@1.1 does not exist or it is not a file.
Checked directory /usr/local/etc/openssl@1.1 does not exist or it is not a directory.
Checked CA file C:\Users\chy19\AppData\Local\Temp\ope9288.tmp: valid
Executing command (D:\wamp64\www\ant\sandbox): git branch -a --no-color --no-abbrev -v
Executing command (D:\wamp64\www\ant\sandbox): git describe --exact-match --tags
Executing command (CWD): git --version
Executing command (D:\wamp64\www\ant\sandbox): git log --pretty="%H" -n1 HEAD --no-show-signature
Executing command (D:\wamp64\www\ant\sandbox): hg branch
Executing command (D:\wamp64\www\ant\sandbox): fossil branch list
Executing command (D:\wamp64\www\ant\sandbox): fossil tag list
Executing command (D:\wamp64\www\ant\sandbox): svn info --xml
Failed to initialize global composer: Composer could not find the config file: C:/Users/chy19/AppData/Roaming/Composer/composer.json

Reading D:\wamp64\www\ant\sandbox/vendor/composer/installed.json (D:\wamp64\www\ant\sandbox\vendor\composer\installed.json)
Loading plugin yii\composer\Plugin (from yiisoft/yii2-composer)
Loading plugin ant\moduleManager\Plugin (from antweb/yii2-module-composer)
Reading ./composer.lock (D:\wamp64\www\ant\sandbox\composer.lock)
Installing dependencies from lock file (including require-dev)
Verifying lock file contents can be installed on current platform.
Reading ./composer.lock (D:\wamp64\www\ant\sandbox\composer.lock)
Built pool.
Generating rules
Resolving dependencies through SAT
Looking at all rules.

Dependency resolution completed in 0.001 seconds
Package operations: 3 installs, 0 updates, 0 removals
Installs: antweb/yii2-token:dev-master da3f9a6, antweb/yii2-user:dev-master f023eb4, antweb/yii2-core-module:dev-master a568ee0
Reading C:/Users/chy19/AppData/Local/Composer/files/antweb/yii2-token/6acfbea8af9f03ad414bf4096fbd181877cbc9a3.zip from cache
  - Loading antweb/yii2-token (dev-master da3f9a6) from cache
Reading C:/Users/chy19/AppData/Local/Composer/files/antweb/yii2-user/25433e1f432ca16d6a3862e8a2ce5e934ff77831.zip from cache
  - Loading antweb/yii2-user (dev-master f023eb4) from cache
Reading C:/Users/chy19/AppData/Local/Composer/files/antweb/yii2-core-module/fda4c4e21c37fbc48f3bbf8cd911e2949b94a2f3.zip from cache
  - Loading antweb/yii2-core-module (dev-master a568ee0) from cache
  - Installing antweb/yii2-token (dev-master da3f9a6): Extracting archive
Executing async command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\composer\67114773
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\composer\67114773
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\antweb\yii2-token
  - Marking antweb/yii2-token (9999999-dev da3f9a6) as installed, alias of antweb/yii2-token (dev-master da3f9a6)
  - Installing antweb/yii2-user (dev-master f023eb4): Extracting archive
Executing async command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\composer\638b591d
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\composer\638b591d
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\antweb\yii2-user
  - Marking antweb/yii2-user (9999999-dev f023eb4) as installed, alias of antweb/yii2-user (dev-master f023eb4)
  - Installing antweb/yii2-core-module (dev-master a568ee0): Extracting archive
Executing async command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\composer\1dcd50e1
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\composer\1dcd50e1
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\antweb\yii2-core-module
  - Marking antweb/yii2-core-module (9999999-dev a568ee0) as installed, alias of antweb/yii2-core-module (dev-master a568ee0)
Downloading https://packagist.org/downloads/
[201] https://packagist.org/downloads/
Package swiftmailer/swiftmailer is abandoned, you should avoid using it. Use symfony/mailer instead.
Package yii2tech/ar-softdelete is abandoned, you should avoid using it. No replacement was suggested.
Generating autoload files
21 packages you are using are looking for funding.
Use the `composer fund` command to find out more!

And I expected this to happen: After composer install, I expected that folder vendor/antweb/yii2-token, vendor/antweb/yii2-user and vendor/antweb/yii2-core-module is exist, but it is not exist, so I tried to run composer install -vvv, I found that composer deleted them:

Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\antweb\yii2-token
Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\antweb\yii2-user

Executing command (CWD): rmdir /S /Q D:\wamp64\www\ant\sandbox\vendor\antweb\yii2-core-module

What caused that composer deleted them?

Thanks.

Created at 2 weeks ago
issue comment
Composer remove folder of some package (unexpectedly) and marking them as installed

The issue is your plugin does not handle promises and the async code, so cleanup happens before install is complete and everything breaks. See https://github.com/antwebstudio/yii2-module-composer/pull/1

Created at 2 weeks ago