Skip to content
Snippets Groups Projects
typo3

typo3

Project ID: 81
Select Git revision
1 result Searching
  • Clone with SSH
  • Clone with HTTPS
  • user avatar
    Thomas Hohn authored and Oliver Hader committed
    Executed commands:
    composer req enshrined/svg-sanitize:~0.22
    composer req enshrined/svg-sanitize:~0.22 \
      -d typo3/sysext/core --no-update
    
    Upgrade enshrined/svg-sanitize from ^0.20.0 to ~0.22 to address
    https://github.com/advisories/GHSA-22wq-q86m-83fh.
    
    The existing constraint `^0.20.0` is interpreted by Composer as
    `>=0.20.0 <0.21.0`, preventing an upgrade to the patched `0.22.x`
    series. Changing the constraint to `~0.22` allows versions in the
    range `>=0.22.0 <1.0.0`, ensuring future versions are included.
    
    Resolves: #107272
    Releases: main, 13.4, 12.4
    Change-Id: I0ff804605fb8581a8c515eff626df5b959dbf231
    Reviewed-on: https://review.typo3.org/c/Packages/TYPO3.CMS/+/90367
    
    
    Reviewed-by: default avatarOliver Hader <oliver.hader@typo3.org>
    Tested-by: default avatarOliver Klee <typo3-coding@oliverklee.de>
    Tested-by: default avatarGarvin Hicking <garvin@hick.ing>
    Reviewed-by: default avatarAlbrecht Köhnlein <ak@koehnlein.eu>
    Tested-by: default avatarOli Bartsch <bo@cedev.de>
    Reviewed-by: default avatarOliver Klee <typo3-coding@oliverklee.de>
    Tested-by: default avatarcore-ci <typo3@b13.com>
    Tested-by: default avatarElias Häußler <elias@haeussler.dev>
    Tested-by: default avatarChristian Kuhn <lolli@schwarzbu.ch>
    Reviewed-by: default avatarElias Häußler <elias@haeussler.dev>
    Reviewed-by: default avatarGarvin Hicking <garvin@hick.ing>
    Reviewed-by: default avatarOli Bartsch <bo@cedev.de>
    Tested-by: default avatarOliver Hader <oliver.hader@typo3.org>
    Reviewed-by: default avatarChristian Kuhn <lolli@schwarzbu.ch>
    Tested-by: default avatarAlbrecht Köhnlein <ak@koehnlein.eu>
    6a39110d
    History
    Name Last commit Last update