Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump craftcms/cms from 3.5.16 to 3.7.55.2 #74

Open
wants to merge 1 commit into
base: main
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Dec 7, 2022

Bumps craftcms/cms from 3.5.16 to 3.7.55.2.

Changelog

Sourced from craftcms/cms's changelog.

3.7.55.2 - 2022-09-22

Security

  • Fixed an XSS vulnerability.

3.7.55.1 - 2022-09-21

Fixed

  • Fixed a bug where the “New category” button could be missing from the Categories index page. (#11977)
  • Fixed a bug where Craft::t() and the |t Twig filter were modifying digit-dash-digit sequences. (#11980)
  • Fixed PHP errors that occurred if webonyx/graphql-php 14.11.17 was installed. (#11979, webonyx/graphql-php#1221)

3.7.55 - 2022-09-20

Added

  • Added craft\helpers\Image::targetDimensions().

Removed

  • Removed the Punycode PHP library. (#11948)

Fixed

  • Fixed a bug where image transforms weren’t always getting applied properly to all animation frames. (#11937)
  • Fixed a bug where animated WebP images would lose their animation frames when transformed. (#11937)
  • Fixed a bug where image transform dimensions could be calculated incorrectly when upscaleImages was false. (#11837)
  • Fixed an error that occurred when setting a non-numeric width or height on an image transform. (#11837)
  • Fixed a bug where relatedTo* arguments weren’t supported by children fields in GraphQL. (#11918)
  • Fixed a bug where Image Editor and slideout action buttons were obstructed when the Debug Toolbar was enabled. (#11965)
  • Fixed an error that occurred when installing Craft when MySQL’s sql_require_primary_key setting was enabled. (#11374)
  • Fixed a bug where invalid entries could be duplicated via the “Save as a new entry” action, despite the duplication appearing to have failed with validation errors. (#11959)
  • Fixed a PHP error that could occur in a potential race condition when calling craft\helpers\FileHelper::clearDirectory().
  • Fixed a bug where Structure section entries that were duplicated via the “Save as a new entry” action on a provisional draft weren’t being placed within the structure properly.
  • Fixed a bug where element’s searchScore properties would be set to null when their original score was below 1, rather than rounding to 0 or 1. (#11973)

3.7.54 - 2022-09-13

Changed

  • Control panel menus now automatically reposition themselves when the window is resized.
  • resave/* commands now have a --touch option. When passed, elements’ dateUpdated timestamps will be updated as they’re resaved. (#11849)
  • Underscores within query param values that begin/end with * are now escaped, so they aren’t treated as wildcard characters by the like condition. (#11898)
  • craft\services\Elements::resaveElements() now has a $touch argument.

Fixed

  • Fixed a bug where element caches weren’t being invalidated during garbage collection, so hard-deleted elements could appear to still exist.
  • Fixed an error that could occur when rendering front-end templates if there was a problem connecting to the database. (#11855)
  • Fixed a bug where it was possible to save an asset with a focal point outside its cropped area. (#11875)
  • Fixed a bug where the Assets index page wasn’t handling failed uploads properly. (#11866)
  • Fixed a UI bug where renaming a newly-created volume subfolder didn’t appear to have any effect.
  • Fixed a bug where empty URL fields would be marked as changed, even when no change was made to them. (#11908)
  • Fixed a bug where transforming an animated GIF into a WebP file would only include the first frame. (#11889)

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [craftcms/cms](https://github.com/craftcms/cms) from 3.5.16 to 3.7.55.2.
- [Release notes](https://github.com/craftcms/cms/releases)
- [Changelog](https://github.com/craftcms/cms/blob/3.7.55.2/CHANGELOG.md)
- [Commits](craftcms/cms@3.5.16...3.7.55.2)

---
updated-dependencies:
- dependency-name: craftcms/cms
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Dec 7, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file php Pull requests that update Php code
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants