Releases: php/pie
Releases · php/pie
1.4.7
Immutable
release. Only release title and notes can be modified.
1.4.7
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
bug
Contributors
asgrim
Assets 8
1.4.6
Immutable
release. Only release title and notes can be modified.
1.4.6
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
bug
- 637: 579: fix self update issues thanks to @asgrim
Contributors
asgrim
Assets 8
1.4.5
Immutable
release. Only release title and notes can be modified.
This release contains vulnerability fixes for the following security advisories:
- GHSA-h842-vjwg-pxxx - Sudo-elevated arbitrary file deletion via
extra.pie-installed-binarymetadata inUninstallUsingUnlink - GHSA-pm6p-666q-hvj5 - Sudo-elevated root code execution via TOCTOU between
self-updateverify and write - GHSA-f67f-c344-cqqr - PIE self-update accepts any historically-attested
pie.phar(rollback gap) - GHSA-vcv4-gmjc-mxvq - php-ext.build-path traversal escapes PIE's vendor extract directory
- GHSA-8xmh-xrvp-hwrf - WindowsInstall::copyExtraFile lacks destination containment check (Windows-only path traversal)
- GHSA-p4j8-36rr-gjfq - Self-update attestation verification is scoped to
--owner=php, not--repo=php/pie
1.3.13
Immutable
release. Only release title and notes can be modified.
This release contains vulnerability fixes for the following security advisories:
- GHSA-h842-vjwg-pxxx - Sudo-elevated arbitrary file deletion via
extra.pie-installed-binarymetadata inUninstallUsingUnlink - GHSA-pm6p-666q-hvj5 - Sudo-elevated root code execution via TOCTOU between
self-updateverify and write - GHSA-f67f-c344-cqqr - PIE self-update accepts any historically-attested
pie.phar(rollback gap) - GHSA-vcv4-gmjc-mxvq - php-ext.build-path traversal escapes PIE's vendor extract directory
- GHSA-8xmh-xrvp-hwrf - WindowsInstall::copyExtraFile lacks destination containment check (Windows-only path traversal)
- GHSA-p4j8-36rr-gjfq - Self-update attestation verification is scoped to
--owner=php, not--repo=php/pie
1.4.4
Immutable
release. Only release title and notes can be modified.
1.4.4
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
dependencies
- 612: [1.4.x] Update Composer to 2.9.8 thanks to @asgrim
Contributors
asgrim
Assets 8
1.3.12
Immutable
release. Only release title and notes can be modified.
1.3.12
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
dependencies
- 611: Update Composer to 2.9.8 thanks to @asgrim
Contributors
asgrim
Assets 4
1.4.3
Immutable
release. Only release title and notes can be modified.
1.4.3
- Total issues resolved: 2
- Total pull requests resolved: 3
- Total contributors: 2
bug
- 608: 597: add output check for dnf permission denied thanks to @asgrim and @hackel
- 607: 597: don't auto install re2c and bison thanks to @asgrim and @hackel
- 606: 596: fix two packages found for same ext in pie show etc thanks to @asgrim and @hackel
Contributors
asgrim and hackel
Assets 8
1.4.2
Immutable
release. Only release title and notes can be modified.
1.4.2
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
bug
Contributors
asgrim
Assets 9
1.4.1
Immutable
release. Only release title and notes can be modified.
1.4.1
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
dependencies,php
- 582: [1.4.x] Update Composer to 2.9.7 thanks to @asgrim
Contributors
asgrim
Assets 9
1.3.11
Immutable
release. Only release title and notes can be modified.
1.3.11
- Total issues resolved: 0
- Total pull requests resolved: 1
- Total contributors: 1
dependencies,php
- 581: [1.3.x] Update Composer to 2.9.7 thanks to @asgrim
Contributors
asgrim