Slim-Psr7 icon indicating copy to clipboard operation
Slim-Psr7 copied to clipboard
verified publisher icon slimphp

Update php-http/psr7-integration-tests requirement from 1.3.0 to 1.4.0

Open dependabot[bot] opened this issue 1 year ago • 1 comments

Updates the requirements on php-http/psr7-integration-tests to permit the latest version.

Release notes

Sourced from php-http/psr7-integration-tests's releases.

1.4.0

Added

  • Support for PHPUnit 10.

Removed

  • Support for PHP 7.2 and PHPUnit 9.
Changelog

Sourced from php-http/psr7-integration-tests's changelog.

[1.4.0] - 2024-08-02

Added

  • Support for PHPUnit 10.

Removed

  • Support for PHP 7.2 and PHPUnit 9.

[1.3.0] - 2023-04-28

Added

  • Adds UriIntegrationTest::testSpecialCharsInUserInfo and UriIntegrationTest::testAlreadyEncodedUserInfo. These validate that usernames and passwords which contain reserved characters (defined by RFC3986) are being encoded so that the URI does not contain these reserved characters at any time.

  • Adds support for testing against PSR-7 1.1 and 2.0. In particular, it adapts tests that were verifying invalid parameters threw InvalidArgumentException previously now either throw that OR (more correctly) raise a TypeError.

[1.2.0] - 2022-12-01

Added

  • Adds UriIntegrationTest::testGetPathNormalizesMultipleLeadingSlashesToSingleSlashToPreventXSS(), UriIntegrationTest::testStringRepresentationWithMultipleSlashes(array $test), and RequestIntegrationTest::testGetRequestTargetInOriginFormNormalizesUriWithMultipleLeadingSlashesInPath(). These validate that a path containing multiple leading slashes is (a) represented with a single slash when calling UriInterface::getPath(), and (b) represented without changes when calling UriInterface::__toString(), including when calling RequestInterface::getRequestTarget() (which returns the path without the URI authority by default, to comply with origin-form). This is done to validate mitigations for CVE-2015-3257.

Changed

  • Modifies UriIntegrationTest::testPathWithMultipleSlashes() to only validate multiple slashes in the middle of a path. Multiple leading slashes are covered with the newly introduced tests.

[1.1.1] - 2021-02-20

Changed

  • Replace deprecated assertRegExp() with assertMatchesRegularExpression()

[1.1.0] - 2020-10-17

Added

  • Support for PHP8 and PHPUnit 8 and 9

[1.0.0] - 2019-12-16

Added

  • Compatible with PHP5
Commits
  • 7e7bc95 prepare release
  • 53f658e Merge pull request #75 from php-http/feature/support-phpunit-10
  • 367c2b0 Add support for PHPUnit10 and remove support for PHPUnit8
  • f725461 Merge pull request #74 from nicolas-grekas/test-get-contents-error
  • 76c64ee Add StreamIntegrationTest::testGetContentsError()
  • 92ef823 Add httpsoft tests (#73)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

dependabot[bot] avatar Sep 01 '24 23:09 dependabot[bot]

Coverage Status

coverage: 99.893%. remained the same when pulling a62c34601c516bc9232076f34390303932f853d6 on dependabot/composer/php-http/psr7-integration-tests-1.4.0 into 1c7f01298774c419a8967d0f51d056b8731f4665 on master.

coveralls avatar Sep 01 '24 23:09 coveralls

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

dependabot[bot] avatar Oct 10 '24 11:10 dependabot[bot]