| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| 0001-Use-homade-autoload-for-CLI.patch | Use homade autoload for CLI | =?utf-8?q?David_Pr=C3=A9vot?= <david@tilapin.org> | not-needed | 2015-02-15 | ||
| 0002-Adapt-res-path.patch | Adapt res/ path | =?utf-8?q?David_Pr=C3=A9vot?= <david@tilapin.org> | not-needed | 2015-02-15 | ||
| 0003-Mimic-distribution-path-for-tests-and-help2man.patch | Mimic distribution path for tests and help2man | =?utf-8?q?David_Pr=C3=A9vot?= <david@tilapin.org> | not-needed | 2015-02-15 | ||
| 0004-Adapt-LICENSE-path.patch | Adapt LICENSE path | =?utf-8?q?David_Pr=C3=A9vot?= <david@tilapin.org> | not-needed | 2015-11-18 | ||
| 0006-Tag-tests-relying-on-remote-network.patch | Tag tests relying on remote network | =?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | 2020-12-11 | ||
| 0007-Tag-test-relying-on-git-repository.patch | Tag test relying on git repository | =?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | 2017-08-06 | ||
| 0007-Use-expectException-instead-of-setExpectedException.patch | Use expectException instead of setExpectedException | =?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | 2019-05-04 | ||
| 0008-Compatibility-with-recent-PHPUnit-8.patch | Compatibility with recent PHPUnit (8) | =?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | 2019-08-03 | ||
| 0009-Merge-pull-request-from-GHSA-h5h8-pc6h-jvvx.patch | Merge pull request from GHSA-h5h8-pc6h-jvvx * Fix external process calls to avoid user input being able to pass extra parameters * Tweak some fixes |
Jordi Boggiano <j.boggiano@seld.be> | no | upstream, https://github.com/composer/composer/commit/332c46af8bebdead80a2601350dff7af0ac1f490 | 2021-04-27 | |
| 0010-Merge-pull-request-from-GHSA-x7cr-6qr6-2hh6.patch | Merge pull request from GHSA-x7cr-6qr6-2hh6 * GitDriver: filter branch names starting with a - character * GitDriver: getFileContent prevent identifiers starting with a - * HgDriver: prevent invalid identifiers and prevent file from running commands * HgDriver: filter branches starting with a - character |
Stephan <glaubinix@users.noreply.github.com> | no | debian | backport, https://github.com/composer/composer/commit/2c40c53637c5c7e43fff7c09d3d324d632734709 | 2022-04-13 |
| 0011-Update-GitHub-token-pattern.patch | Update GitHub token pattern GitHub is updating the format of auth tokens from `a-z0-9` to `A-Za-z0-9` ([notice](https://github.blog/changelog/2021-03-04-authentication-token-format-updates/)). I'm not sure why `.` is allowed, but I dare not to remove it. In this PR, the token validation regex is updated to allow `A-Za-z0-9` instead of the current all lower-case `a-z` and disallowed `_`. |
Ayesh Karunaratne <ayesh@aye.sh> | no | debian | upstream, https://github.com/composer/composer/commit/dc83ba93f3d8a35629f9a387632e8cd373a144d0 | 2021-03-07 |
| 0012-Checkout-ProcessExecutorMock.php-needed-for-updated-.patch | Checkout ProcessExecutorMock.php needed for updated tests git checkout 2c40c53637c5c7e43fff7c09d3d324d632734709 tests/Composer/Test/Mock/ProcessExecutorMock.php |
=?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | 2022-05-29 | ||
| 0013-Import-Pcre.patch | Import Pcre | =?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | 2024-02-17 | ||
| 0014-Merge-pull-request-from-GHSA-7c6p-848j-wh5h.patch | Merge pull request from GHSA-7c6p-848j-wh5h * Fix automatic disabling of plugins when running non-interactive as root * Fix usage of possibly compromised installed.php/InstalledVersions.php at runtime, refs GHSA-7c6p-848j-wh5h * Fix InstalledVersionsTest regression |
=?utf-8?q?Bastien_Roucari=C3=A8s?= <rouca@debian.org> | yes | debian upstream | upstream, https://github.com/composer/composer/commit/77e3982918bc1d886843dc3d5e575e7e871b27b7 | 2024-02-18 |
| 0015-Merge-pull-request-from-GHSA-v9qv-c7wm-wgmf.patch | Merge pull request from GHSA-v9qv-c7wm-wgmf | Jordi Boggiano <j.boggiano@seld.be> | yes | debian upstream | backport, https://github.com/composer/composer/commit/6bd43dff859c597c09bd03a7e7d6443822d0a396 | 2024-06-10 |
| 0016-Merge-pull-request-from-GHSA-47f6-5gq3-vx9c.patch | Merge pull request from GHSA-47f6-5gq3-vx9c | Jordi Boggiano <j.boggiano@seld.be> | yes | debian upstream | upstream, https://github.com/composer/composer/commit/ee28354ca8d33c15949ad7de2ce6656ba3f68704 | 2024-06-10 |
| 0017-Fix-test.patch | Fix test | Jordi Boggiano <j.boggiano@seld.be> | no | backport, https://github.com/composer/composer/commit/5aa7b03b9d6cd0b20b32733298b6e97a2b11b287 | 2024-06-10 | |
| 0018-Adapt-test-before-calling-fromShellCommandline.patch | Adapt test before calling fromShellCommandline Use the test as initially implemented in the 2.2 branch. |
=?utf-8?q?David_Pr=C3=A9vot?= <taffit@debian.org> | no | debian | backport, https://github.com/composer/composer/commit/5e4a8a882dc70398c3c53e7b3aabd16790c9e198 | 2024-06-21 |