Add dependancies audit #100

valentinbonneaud · 2024-04-10T11:23:17Z

Add a composer audit job in the GitHub actions to perform a security audit of our dependency tree

Change composer package name

Fix bug in by year day

* Improve fast forward performance * Add testcases

* Add FastForward Before * Fix case no occurrence in frequency window * Split functions * Review * Review

* Fix phpstan * Fixing tests <= PHP7.1 * Adding badges

* FREQ is mandatory in the RRule * Review

* Expose RRULE properties from RRuleIterator COUNT FREQ INTERVAL UNTIL * Test get accessors for RRULE properties

* fix Bad file descriptor (7.4) (sabre-io#469) * travis: allow failure for phpstan for now (sabre-io#470) * travis: add php 7.4snapshot build (sabre-io#471) * Fixed typo in vobject CLI help (sabre-io#477) * Run phpstan on PHP >= 7.1 (sabre-io#483) * Add TZ in iTip REPLY messages * Added phpstan for tests folder (sabre-io#485) * Add PHONE-NUMBER value type (used for TEL in vCard 3.0) (sabre-io#486) Signed-off-by: Christian Kraus <[email protected]> * use latest phpstan 0.12.5 in CI * Add PHPstorm .idea to .gitignore * Fix various typos * Prepare next iteration * Apply php-cs-fixer code style changes * Use phpunit8 where possible * Fixed phpstan level 1 errors * Make sure there is no logic change * Prevent setting foreach key beforehand * Refactored fqcn strings to ::class to allow checking with phpstan (sabre-io#495) * Added convenient development commands * Decoupled cs-fixer command from chosen tool * Use phpunit 9 where possible * Replace assertRegExp with assertMatchesRegularExpression in unit test * fix an incomplete phpdoc type annotation * php-cs-fixer fixes * Ignore phpdoc_summary check Seriously you want me to put a full stop directly after a link?? * Drop php < 7.1, pull composer / travis changes from upstream * Release 4.3.4 Co-authored-by: Remi Collet <[email protected]> Co-authored-by: Markus Staab <[email protected]> Co-authored-by: Dominik <[email protected]> Co-authored-by: Jeroen van Oort <[email protected]> Co-authored-by: Renaud BOYER <[email protected]> Co-authored-by: Christian Kraus <[email protected]> Co-authored-by: Phil Davis <[email protected]> Co-authored-by: Michael Stilkerich <[email protected]>

* fix Bad file descriptor (7.4) (sabre-io#469) * travis: allow failure for phpstan for now (sabre-io#470) * travis: add php 7.4snapshot build (sabre-io#471) * reduce phpstan level back to 0, as level 1 is failing right now (sabre-io#472) * reduce phpstan level back to 0, as level 1 is failing right now * travis: no longer allow failures for phpstan * Fixed typo in vobject CLI help (sabre-io#477) * Release 4.2.1 (sabre-io#479) * Release 4.2.1 * Update CHANGELOG.md * Prepare next iteration (sabre-io#480) * Run phpstan on PHP >= 7.1 (sabre-io#483) * Add TZ in iTip REPLY messages * Added phpstan for tests folder (sabre-io#485) * Add PHONE-NUMBER value type (used for TEL in vCard 3.0) (sabre-io#486) Signed-off-by: Christian Kraus <[email protected]> * use latest phpstan 0.12.5 in CI * Add PHPstorm .idea to .gitignore * Fix various typos * Release 4.2.2 (sabre-io#490) * Release 4.2.2 * Update CHANGELOG.md * Prepare next iteration * Update dependencies and code style tools * Remove unneeded 'bootstrap' line from phpstan.neon * Apply php-cs-fixer code style changes * run php-cs-fixer in CI * php-cs-fixer must be at least 2.16.1 for PHP 7.4 * Use phpunit8 where possible * Fixed phpstan level 1 errors * Make sure there is no logic change * Prevent setting foreach key beforehand * Refactored fqcn strings to ::class to allow checking with phpstan (sabre-io#495) * Release 4.3.0 (sabre-io#497) * Update CHANGELOG.md * Update Version.php * Added phpstan to dev dependencies * Reset bin-dir config * Added convenient development commands * Cleaned up .gitignore These entries should be in the developer's global .gitignore * cs-fixer: don't check only the lib folder * Decoupled cs-fixer command from chosen tool * Standardize CI * Use phpunit 9 where possible * Only upload coverage when it has been collected * Replace assertRegExp with assertMatchesRegularExpression in unit test * fix an incomplete phpdoc type annotation * Release 4.3.1 * Adjust boolean vars in .travis.yml to prepare for PHP8.0 * Run unit tests on PHP8 * Fixup calendar parameter to Broker parseEvent * Release 4.3.2 * Remove Pacific-New obsolete timezone * Do composer remove --no-update in Travis * Use min php-cs-fixer 2.16.7 * Release 4.3.3 Co-authored-by: Remi Collet <[email protected]> Co-authored-by: Markus Staab <[email protected]> Co-authored-by: Dominik <[email protected]> Co-authored-by: Jeroen van Oort <[email protected]> Co-authored-by: Renaud BOYER <[email protected]> Co-authored-by: Christian Kraus <[email protected]> Co-authored-by: Thomas Müller <[email protected]> Co-authored-by: Phil Davis <[email protected]> Co-authored-by: Michael Stilkerich <[email protected]>

Co-authored-by: Ren Xie Liu <[email protected]>

Modify TZID value for migration timezones

Release 4.23.0

…rameter

better naming in test case Co-authored-by: giuseppe-arcuti <[email protected]>

[Calendar][CALBE-2290][Feat] added whitelist for illegal values in pa…

Release 4.24.0

…param [INBE-269][Fix] drop malformed or illegal VALUE parameter

Release 4.26.0

…dard-time Add support for gulf standard time

Release 4.27.0

use dubai instead of muscat

Release 4.28.0

…eam-master-20231228

…231228 Chore/merge upstream master 20231228

Release 4.29.0

KAYLukas and others added 30 commits August 20, 2019 18:04

Fix bug in by year day

dde2b5c

Change composer name

e980e28

Merge pull request #1 from ProtonMail/feat/update-composer

bbb9eb6

Change composer package name

Merge pull request #2 from ProtonMail/fix/by-year-day

0c57be3

Fix bug in by year day

Add daily occurences to nextMonth and NextYear (#3)

2b27d82

Enhance fastforward speed if no count value has been given (#4)

ab366e1

* Improve fast forward performance * Add testcases

Update README (#5)

af51976

Add FastForward Before (#6)

be709bc

* Add FastForward Before * Fix case no occurrence in frequency window * Split functions * Review * Review

Add fastForwardToEnd (#7)

d78a3ac

Remove timing test in case of count (#8)

1889acd

Update changelog (#9)

d0d4498

Fix phpstan (#10)

7933fc2

* Fix phpstan * Fixing tests <= PHP7.1 * Adding badges

FREQ is mandatory in the RRule (#11)

647533a

* FREQ is mandatory in the RRule * Review

Add test on BYMONTHDAY (#12)

2fe3a9a

Fix counter when fast forward before (#13)

0a003c7

Add extra timezones support (#14)

1c89b54

Correct typo in changelog

ca647a2

Expose RRULE properties from RRuleIterator (#15)

b16c3e7

* Expose RRULE properties from RRuleIterator COUNT FREQ INTERVAL UNTIL * Test get accessors for RRULE properties

Throw exception when getting invalid timezone (#17)

e125596

Co-authored-by: Ren Xie Liu <[email protected]>

Update changelog for release 4.4.0 (#19)

6507b3d

Validate count and until property (#20)

bee705a

Co-authored-by: Ren Xie Liu <[email protected]>

Prepare changelog for 4.4.1 (#21)

5e572e2

Add microsoft timezone map (#23)

57b05a4

Co-authored-by: Ren Xie Liu <[email protected]>

Prepare 4.4.2 release (#24)

0380546

[Calendar] Fix duplicate value (#25)

f9055e0

Co-authored-by: Ren Xie Liu <[email protected]>

[Calendar] Add php unsupport timezone

b87d007

Update changelog for 4.5.1

fb68d5a

Add FR Europe localized timezone

79a8073

liurxliu and others added 28 commits April 13, 2023 10:25

Merge pull request #82 from ProtonMail/feat/handle-migration-tz

9b2bf1e

Modify TZID value for migration timezones

Release 4.23.0

f894aab

Merge pull request #84 from ProtonMail/release/4.23.0

d7c313f

Release 4.23.0

[Calendar][CALBE-2290][Feat] added whitelist for illegal values in pa…

2371b9d

…rameter

Update tests/VObject/InvalidValueParamTest.php

aba1a70

better naming in test case Co-authored-by: giuseppe-arcuti <[email protected]>

Merge pull request #87 from ProtonMail/calbe2290

b7195f2

[Calendar][CALBE-2290][Feat] added whitelist for illegal values in pa…

Release 4.24.0

3a8c783

Merge pull request #88 from ProtonMail/release/4.24.0

4286aa1

Release 4.24.0

Move America/Yellowknife to deprecated (#89)

af9a85f

Release 4.25 (#90)

72c81a9

[INBE-269][Fix] drop malformed or illegal VALUE parameter

7391033

Merge pull request #92 from ProtonMail/fix/invalid-value-in-location-…

b3e2b2b

…param [INBE-269][Fix] drop malformed or illegal VALUE parameter

Release 4.26.0

5ad0f8a

Merge pull request #93 from ProtonMail/release/4.26.0

8e9bf00

Release 4.26.0

Add support for gulf standard time

0d82bc5

Merge pull request #94 from ProtonMail/feat/add-support-for-gulf-stan…

136b453

…dard-time Add support for gulf standard time

Release 4.27.0

cd8741f

Merge pull request #95 from ProtonMail/release/4.27.0

ea9b751

Release 4.27.0

use dubai instead of muscat

56c6efd

Merge pull request #96 from ProtonMail/feat/use-dubai-instead-of-muscat

8e8b925

use dubai instead of muscat

Release 4.28.0

883dff5

Merge pull request #97 from ProtonMail/release/4.28.0

c75d73d

Release 4.28.0

Merge remote-tracking branch 'upstream/master' into chore/merge-upstr…

8639abe

…eam-master-20231228

make test pass from both sides

1a90852

Merge pull request #98 from ProtonMail/chore/merge-upstream-master-20…

7f45c30

…231228 Chore/merge upstream master 20231228

Release 4.29.0

5c0f701

Merge pull request #99 from ProtonMail/release/4.29.0

a9edab8

Release 4.29.0

Add dependancies audit

f5ef6df

valentinbonneaud force-pushed the feat/dep-audit branch from 115910d to f5ef6df Compare April 10, 2024 11:24

giuseppe-arcuti force-pushed the master branch from 16a09a5 to ac1421c Compare June 27, 2024 16:25

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add dependancies audit #100

Add dependancies audit #100

valentinbonneaud commented Apr 10, 2024 •

edited

Loading

Add dependancies audit #100

Are you sure you want to change the base?

Add dependancies audit #100

Conversation

valentinbonneaud commented Apr 10, 2024 • edited Loading

valentinbonneaud commented Apr 10, 2024 •

edited

Loading