Skip to content

build(deps): Bump the composer group across 1 directory with 4 updates#1119

Open
dependabot[bot] wants to merge 1 commit into
WEM-2.0from
dependabot/composer/composer-ce178d82a0
Open

build(deps): Bump the composer group across 1 directory with 4 updates#1119
dependabot[bot] wants to merge 1 commit into
WEM-2.0from
dependabot/composer/composer-ce178d82a0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 15, 2026

Copy link
Copy Markdown
Contributor

Bumps the composer group with 3 updates in the / directory: guzzlehttp/guzzle, horstoeko/zugferd and predis/predis.

Updates guzzlehttp/guzzle from 7.10.5 to 7.11.1

Release notes

Sourced from guzzlehttp/guzzle's releases.

Release 7.11.1

Fixed

  • Ignore request-level transport_sharing, matching other unknown request options

Release 7.11.0

Added

  • Added support for providing the proxy request option's no value as a comma-delimited string
  • Added the protocols request option to restrict allowed URI schemes for request transfers
  • Added cert_type and ssl_key_type request options for TLS certificate and private-key file types
  • Added PHP stream handler support for the ssl_key request option
  • Added transport sharing via the transport_sharing client and cURL handler options

Changed

  • Adjusted guzzlehttp/promises version constraint to ^2.5
  • Adjusted guzzlehttp/psr7 version constraint to ^2.11
  • Allowed domainless SetCookie instances to be stored without wildcard request matching
  • Changed no-proxy matching to respect request ports for host-and-port rules
  • Prevented CurlMultiHandler destructors from throwing during cleanup
  • Improved invalid response handling across handlers

Deprecated

  • Deprecated non-iterable Pool request collections, which will be rejected in 8.0
  • Deprecated non-uppercase easy request methods; 8.0 preserves method casing
  • Deprecated non-string headers request option values, which will be rejected in 8.0
  • Deprecated empty headers request option value arrays, which will be rejected in 8.0
  • Deprecated empty and malformed request protocol versions, which will be rejected in 8.0
  • Deprecated conflicting raw cURL request options, including CURLOPT_SHARE, which will be rejected in 8.0
  • Deprecated scalar-coerced idn_conversion request option values, which will be rejected in 8.0
  • Deprecated invalid documented request option value types, which will be rejected in 8.0
  • Deprecated selected request options ignored by incompatible built-in handlers, which will be rejected in 8.0
  • Deprecated RequestException::wrapException(), which will be removed in 8.0
  • Deprecated RetryMiddleware::exponentialDelay(), which will be removed in 8.0

Release 7.10.6

  • CurlMultiHandler now rejects the promise when CurlFactory::finish() throws, preserving sibling transfers
  • SetCookie now normalizes unparseable Expires values to null instead of false
  • Fix stream handler decoded gzip/deflate truncation by dropping invalid Content-Length
Changelog

Sourced from guzzlehttp/guzzle's changelog.

7.11.1 - 2026-06-07

Fixed

  • Ignore request-level transport_sharing, matching other unknown request options

7.11.0 - 2026-06-02

Added

  • Added support for providing the proxy request option's no value as a comma-delimited string
  • Added the protocols request option to restrict allowed URI schemes for request transfers
  • Added cert_type and ssl_key_type request options for TLS certificate and private-key file types
  • Added PHP stream handler support for the ssl_key request option
  • Added transport sharing via the transport_sharing client and cURL handler options

Changed

  • Adjusted guzzlehttp/promises version constraint to ^2.5
  • Adjusted guzzlehttp/psr7 version constraint to ^2.11
  • Allowed domainless SetCookie instances to be stored without wildcard request matching
  • Changed no-proxy matching to respect request ports for host-and-port rules
  • Prevented CurlMultiHandler destructors from throwing during cleanup
  • Improved invalid response handling across handlers

Deprecated

  • Deprecated non-iterable Pool request collections, which will be rejected in 8.0
  • Deprecated non-uppercase easy request methods; 8.0 preserves method casing
  • Deprecated non-string headers request option values, which will be rejected in 8.0
  • Deprecated empty headers request option value arrays, which will be rejected in 8.0
  • Deprecated empty and malformed request protocol versions, which will be rejected in 8.0
  • Deprecated conflicting raw cURL request options, including CURLOPT_SHARE, which will be rejected in 8.0
  • Deprecated scalar-coerced idn_conversion request option values, which will be rejected in 8.0
  • Deprecated invalid documented request option value types, which will be rejected in 8.0
  • Deprecated selected request options ignored by incompatible built-in handlers, which will be rejected in 8.0
  • Deprecated RequestException::wrapException(), which will be removed in 8.0
  • Deprecated RetryMiddleware::exponentialDelay(), which will be removed in 8.0

7.10.6 - 2026-06-01

Fixed

  • CurlMultiHandler now rejects the promise when CurlFactory::finish() throws, preserving sibling transfers
  • SetCookie now normalizes unparseable Expires values to null instead of false
  • Fix stream handler decoded gzip/deflate truncation by dropping invalid Content-Length
Commits

Updates horstoeko/zugferd from 1.0.122 to 1.0.123

Release notes

Sourced from horstoeko/zugferd's releases.

v1.0.123

What's Changed

New Contributors

Full Changelog: horstoeko/zugferd@v1.0.122...v1.0.123

Changelog

Sourced from horstoeko/zugferd's changelog.

v1.0.123

Previous version v1.0.122

Type Hash Date Author Subject Issue(s)
🆕 043bc25 2026-05-23 08:50:32 CEST HorstOeko [ENH] Added method to allow configuring the PDF/A conformance #364
🌑 952d642 2026-05-04 17:05:04 CEST Andreas Wunderwald feat: extend getDocumentAdditionalReferencedDocument to include binary mime code and filename handling in both logic and tests.
🌑 bf84893 2026-04-27 18:00:30 CEST Andreas Wunderwald Removed the invalid MIME type “application/xml”
🌑 15253ee 2026-04-27 18:00:30 CEST Andreas Wunderwald Removed the invalid MIME type “application/xml”
🌑 ac6da1c 2026-04-27 17:27:34 CEST Andreas Wunderwald Add support for XML mimetype in supported formats, we should remove this separately
🌑 a628c9f 2026-04-27 17:20:48 CEST Andreas Wunderwald Normalize PHP 8.0 CSV mimetype misdetection and remove redundant XML mimetype from supported list
🌑 b632bf7 2026-04-27 16:38:59 CEST Andreas Wunderwald Improve mimetype handling and add tests and fix for CSV attachments

There are 3 internal commit(s)

Commits
  • 7935438 [INFR] Added continue-on-error to several workflows
  • 9b8dbe8 [ENH] #364 Added method to allow configuring the PDF/A conformance
  • 043bc25 [ENH] #364 Added method to allow configuring the PDF/A conformance
  • 08c12c0 [ENH] Add MIME code and filename output parameters to `getDocumentAdditionalR...
  • 192ea29 Merge branch 'master' into master
  • 952d642 feat: extend getDocumentAdditionalReferencedDocument to include binary mime...
  • da2a891 Merge pull request #362 from wundii/remove_supported_mimetype_xml
  • 9d6c454 Merge remote-tracking branch 'origin/remove_supported_mimetype_xml' into remo...
  • bf84893 Removed the invalid MIME type “application/xml”
  • 3f9c1ee Merge pull request #361 from wundii/csv_format_fix
  • Additional commits viewable in compare view

Updates predis/predis from 3.4.2 to 3.5.1

Release notes

Sourced from predis/predis's releases.

v3.5.1

Added

  • Expose pipeline() API via ClientInterface (#1686)

Fixed

  • Allow UNLINK to accept an array of keys (#1687)

v3.5.0

Added

  • Added support for XNACK command (#1666)
  • Added support for INCREX command (#1674)
  • Added support for UNLINK command (#1680)
  • Added support for AR* array commands (#1672)
  • Handle Redis Cluster -READONLY responses failover events (#1656)
  • Added FPHA argument for JSON.SET command (#1661)
  • Added new COUNT aggregator for Sorted Set commands (#1668)
  • Added support for multiple aggregators for TS.range commands (#1670)

Changed

  • Include command name in unsupported container command error messages (#1653)

Fixed

  • Fixed handling of gap slots in SlotMap::offsetUnset() (#1660)
  • Fixed ZRANGE to include 6.2 arguments (#1662)
  • Fixed Sentinel retry to narrow retryable exceptions to CommunicationException (#1665)
  • Fixed SENTINEL SLAVES RESP3 incompatible response (#1676)
Changelog

Sourced from predis/predis's changelog.

v3.5.1 (2026-06-11)

Added

  • Expose pipeline() API via ClientInterface (#1686)

Fixed

  • Allow UNLINK to accept an array of keys (#1687)

v3.5.0 (2026-06-02)

Added

  • Added support for XNACK command (#1666)
  • Added support for INCREX command (#1674)
  • Added support for UNLINK command (#1680)
  • Added support for AR* array commands (#1672)
  • Handle Redis Cluster -READONLY responses failover events (#1656)
  • Added FPHA argument for JSON.SET command (#1661)
  • Added new COUNT aggregator for Sorted Set commands (#1668)
  • Added support for multiple aggregators for TS.range commands (#1670)

Changed

  • Include command name in unsupported container command error messages (#1653)

Fixed

  • Fixed handling of gap slots in SlotMap::offsetUnset() (#1660)
  • Fixed ZRANGE to include 6.2 arguments (#1662)
  • Fixed Sentinel retry to narrow retryable exceptions to CommunicationException (#1665)
  • Fixed SENTINEL SLAVES RESP3 incompatible response (#1676)
Commits

Updates setasign/fpdi from 2.6.7 to 2.6.8

Release notes

Sourced from setasign/fpdi's releases.

FPDI 2.6.8

Fixes

  • Handle filter exceptions of faulty streams in Page::getContentStream() (fixes #252).

Tweaks

  • Optimized handling of recursion in xref-table parsing.
Commits
  • 881945b Updated version constant
  • 1f227b5 Merge pull request #257 from Setasign/development
  • 1eac11f Update README.md
  • 3fd0b31 Merge pull request #256 from Setasign/development
  • 3f01c08 Merge branch 'master' into development
  • 32b24a9 Update release.yml
  • 4ba8a11 Merge pull request #255 from Setasign/development
  • 0ca4920 Handle filter exceptions of faulty streams in Page::getContentStream(). (Fi...
  • be50a1e Merge pull request #254 from Setasign/development
  • c62f222 Update zizmor.yml
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the composer group with 3 updates in the / directory: [guzzlehttp/guzzle](https://github.com/guzzle/guzzle), [horstoeko/zugferd](https://github.com/horstoeko/zugferd) and [predis/predis](https://github.com/predis/predis).


Updates `guzzlehttp/guzzle` from 7.10.5 to 7.11.1
- [Release notes](https://github.com/guzzle/guzzle/releases)
- [Changelog](https://github.com/guzzle/guzzle/blob/7.11/CHANGELOG.md)
- [Commits](guzzle/guzzle@7.10.5...7.11.1)

Updates `horstoeko/zugferd` from 1.0.122 to 1.0.123
- [Release notes](https://github.com/horstoeko/zugferd/releases)
- [Changelog](https://github.com/horstoeko/zugferd/blob/master/CHANGELOG.md)
- [Commits](horstoeko/zugferd@v1.0.122...v1.0.123)

Updates `predis/predis` from 3.4.2 to 3.5.1
- [Release notes](https://github.com/predis/predis/releases)
- [Changelog](https://github.com/predis/predis/blob/main/CHANGELOG.md)
- [Commits](predis/predis@v3.4.2...v3.5.1)

Updates `setasign/fpdi` from 2.6.7 to 2.6.8
- [Release notes](https://github.com/Setasign/FPDI/releases)
- [Commits](Setasign/FPDI@v2.6.7...v2.6.8)

---
updated-dependencies:
- dependency-name: guzzlehttp/guzzle
  dependency-version: 7.11.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: composer
- dependency-name: horstoeko/zugferd
  dependency-version: 1.0.123
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: composer
- dependency-name: predis/predis
  dependency-version: 3.5.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: composer
- dependency-name: setasign/fpdi
  dependency-version: 2.6.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: composer
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Jun 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants