Sourced from guzzlehttp/guzzle's releases.

Release 6.5.7

See change log for changes.

Release 6.5.6

See change log for changes.

6.5.5

No release notes provided.

6.5.4

No release notes provided.

6.5.3

No release notes provided.

6.5.2

• idn_to_ascii() fix for old PHP versions #2489

6.5.1

• Better defaults for PHP installations with old ICU lib #2454
• IDN support for redirects #2424

6.5.0

No release notes provided.

6.4.1

No release notes provided.

Sourced from guzzlehttp/guzzle's changelog.

6.5.7 - 2022-06-09

• Fix failure to strip Authorization header on HTTP downgrade
• Fix failure to strip the Cookie header on change in host or HTTP downgrade

6.5.6 - 2022-05-25

• Fix cross-domain cookie leakage

6.5.5 - 2020-06-16

• Unpin version constraint for symfony/polyfill-intl-idn #2678

6.5.4 - 2020-05-25

• Fix various intl icu issues #2626

6.5.3 - 2020-04-18

• Use Symfony intl-idn polyfill #2550
• Remove use of internal functions #2548

6.5.2 - 2019-12-23

• idn_to_ascii() fix for old PHP versions #2489

6.5.1 - 2019-12-21

• Better defaults for PHP installations with old ICU lib #2454
• IDN support for redirects #2424

6.5.0 - 2019-12-07

• Improvement: Added support for reset internal queue in MockHandler. #2143
• Improvement: Added support to pass arbitrary options to curl_multi_init. #2287
• Fix: Gracefully handle passing null to the header option. #2132
• Fix: RetryMiddleware did not do exponential delay between retries due unit mismatch. #2132 Previously, RetryMiddleware would sleep for 1 millisecond, then 2 milliseconds, then 4 milliseconds. After this change, RetryMiddleware will sleep for 1 second, then 2 seconds, then 4 seconds. Middleware::retry() accepts a second callback parameter to override the default timeouts if needed.
• Fix: Prevent undefined offset when using array for ssl_key options. #2348
• Deprecated ClientInterface::VERSION

6.4.1 - 2019-10-23

• No guzzle.phar was created in 6.4.0 due expired API token. This release will fix that
• Added parent::__construct() to FileCookieJar and SessionCookieJar

6.4.0 - 2019-10-23

... (truncated)

• 724562f Release 6.5.7 (#3022)
• f092dd7 [6.x] Fix cross-domain cookie leakage (#3017)
• e8ed4db Fixed tests (#2720)
• 9d4290d Prepare 6.5.5 (#2692)
• ba7930f Updated static analysis tooling (#2694)
• 23730ab Unpin version for symfony/polyfill-intl-idn (#2678)
• a4a1b69 Adding changelog for 6.5.4 (#2651)
• 0d137e9 [6.5] Remove obsolete statement in handler option docs (#2567)
• d3f2c17 [6.5] Fix various intl icu issues (#2626)
• c8162be Fix use and phpDoc for @throws GuzzleException/InvalidArgumentException (#2...
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from guzzlehttp/guzzle's releases.

Release 6.5.6

See change log for changes.

6.5.5

No release notes provided.

6.5.4

No release notes provided.

6.5.3

No release notes provided.

6.5.2

• idn_to_ascii() fix for old PHP versions #2489

6.5.1

• Better defaults for PHP installations with old ICU lib #2454
• IDN support for redirects #2424

6.5.0

No release notes provided.

6.4.1

No release notes provided.

Sourced from guzzlehttp/guzzle's changelog.

6.5.6 - 2022-05-25

• Fix cross-domain cookie leakage

6.5.5 - 2020-06-16

• Unpin version constraint for symfony/polyfill-intl-idn #2678

6.5.4 - 2020-05-25

• Fix various intl icu issues #2626

6.5.3 - 2020-04-18

• Use Symfony intl-idn polyfill #2550
• Remove use of internal functions #2548

6.5.2 - 2019-12-23

• idn_to_ascii() fix for old PHP versions #2489

6.5.1 - 2019-12-21

• Better defaults for PHP installations with old ICU lib #2454
• IDN support for redirects #2424

6.5.0 - 2019-12-07

• Improvement: Added support for reset internal queue in MockHandler. #2143
• Improvement: Added support to pass arbitrary options to curl_multi_init. #2287
• Fix: Gracefully handle passing null to the header option. #2132
• Fix: RetryMiddleware did not do exponential delay between retries due unit mismatch. #2132 Previously, RetryMiddleware would sleep for 1 millisecond, then 2 milliseconds, then 4 milliseconds. After this change, RetryMiddleware will sleep for 1 second, then 2 seconds, then 4 seconds. Middleware::retry() accepts a second callback parameter to override the default timeouts if needed.
• Fix: Prevent undefined offset when using array for ssl_key options. #2348
• Deprecated ClientInterface::VERSION

6.4.1 - 2019-10-23

• No guzzle.phar was created in 6.4.0 due expired API token. This release will fix that
• Added parent::__construct() to FileCookieJar and SessionCookieJar

6.4.0 - 2019-10-23

• Improvement: Improved error messages when using curl < 7.21.2 #2108
• Fix: Test if response is readable before returning a summary in RequestException::getResponseBodySummary() #2081
• Fix: Add support for GUZZLE_CURL_SELECT_TIMEOUT environment variable #2161
• Improvement: Added GuzzleHttp\Exception\InvalidArgumentException #2163
• Improvement: Added GuzzleHttp\_current_time() to use hrtime() if that function exists. #2242

... (truncated)

• f092dd7 [6.x] Fix cross-domain cookie leakage (#3017)
• e8ed4db Fixed tests (#2720)
• 9d4290d Prepare 6.5.5 (#2692)
• ba7930f Updated static analysis tooling (#2694)
• 23730ab Unpin version for symfony/polyfill-intl-idn (#2678)
• a4a1b69 Adding changelog for 6.5.4 (#2651)
• 0d137e9 [6.5] Remove obsolete statement in handler option docs (#2567)
• d3f2c17 [6.5] Fix various intl icu issues (#2626)
• c8162be Fix use and phpDoc for @throws GuzzleException/InvalidArgumentException (#2...
• 5262ecf Document the impact of fixing time units for RetryMiddleware (#2570)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from guzzlehttp/guzzle's releases.

Release 6.5.8

See change log for changes.

Release 6.5.7

See change log for changes.

Release 6.5.6

See change log for changes.

6.5.5

No release notes provided.

6.5.4

No release notes provided.

6.5.3

No release notes provided.

6.5.2

• idn_to_ascii() fix for old PHP versions #2489

6.5.1

• Better defaults for PHP installations with old ICU lib #2454
• IDN support for redirects #2424

6.5.0

No release notes provided.

6.4.1

No release notes provided.

Sourced from guzzlehttp/guzzle's changelog.

6.5.8 - 2022-06-20

• Fix change in port should be considered a change in origin
• Fix CURLOPT_HTTPAUTH option not cleared on change of origin

6.5.7 - 2022-06-09

• Fix failure to strip Authorization header on HTTP downgrade
• Fix failure to strip the Cookie header on change in host or HTTP downgrade

6.5.6 - 2022-05-25

• Fix cross-domain cookie leakage

6.5.5 - 2020-06-16

• Unpin version constraint for symfony/polyfill-intl-idn #2678

6.5.4 - 2020-05-25

• Fix various intl icu issues #2626

6.5.3 - 2020-04-18

• Use Symfony intl-idn polyfill #2550
• Remove use of internal functions #2548

6.5.2 - 2019-12-23

• idn_to_ascii() fix for old PHP versions #2489

6.5.1 - 2019-12-21

• Better defaults for PHP installations with old ICU lib #2454
• IDN support for redirects #2424

6.5.0 - 2019-12-07

• Improvement: Added support for reset internal queue in MockHandler. #2143
• Improvement: Added support to pass arbitrary options to curl_multi_init. #2287
• Fix: Gracefully handle passing null to the header option. #2132
• Fix: RetryMiddleware did not do exponential delay between retries due unit mismatch. #2132 Previously, RetryMiddleware would sleep for 1 millisecond, then 2 milliseconds, then 4 milliseconds. After this change, RetryMiddleware will sleep for 1 second, then 2 seconds, then 4 seconds. Middleware::retry() accepts a second callback parameter to override the default timeouts if needed.
• Fix: Prevent undefined offset when using array for ssl_key options. #2348
• Deprecated ClientInterface::VERSION

6.4.1 - 2019-10-23

... (truncated)

• a52f044 Release 6.5.8 (#3042)
• 724562f Release 6.5.7 (#3022)
• f092dd7 [6.x] Fix cross-domain cookie leakage (#3017)
• e8ed4db Fixed tests (#2720)
• 9d4290d Prepare 6.5.5 (#2692)
• ba7930f Updated static analysis tooling (#2694)
• 23730ab Unpin version for symfony/polyfill-intl-idn (#2678)
• a4a1b69 Adding changelog for 6.5.4 (#2651)
• 0d137e9 [6.5] Remove obsolete statement in handler option docs (#2567)
• d3f2c17 [6.5] Fix various intl icu issues (#2626)
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from guzzlehttp/psr7's releases.

1.8.4

See change log for changes.

1.8.3

See change log for changes.

1.8.2

See change log for changes.

1.8.1

See change log for changes.

1.8.0

See change log for changes.

1.7.0

See change log for changes.

Revert PSR-7 type assertions

1.6.0 introduced a few type assertions to enforce types defined by PSR-7. Unfortunately that break the library for users not strictly following the PSR-7 standard. Since the users impacted by this change seems to be rather large, this hotfix reverts that change with the note that we will reapply it in 2.0.0, so fixing this is recommended regardless of which version you use.

Details are in #282 and #283

1.6.0

Version 1.6.0 is released which will likely be the last minor release in 1.x. We're focussing 2.0 now with support for psr/http-factory, PHP 7.2 requirement and type declarations.

Added

• Allowed version ^3.0 of ralouphie/getallheaders dependency (#244)
• Added MIME type for WEBP image format (#246)
• Added more validation of values according to PSR-7 and RFC standards, e.g. status code range (#250, #272)

Changed

• Tests don't pass with HHVM 4.0, so HHVM support got dropped. Other libraries like composer have done the same. (#262)
• Accept port number 0 to be valid (#270)

Fixed

• Fixed subsequent reads from php://input in ServerRequest (#247)
• Fixed readable/writable detection for certain stream modes (#248)
• Fixed encoding of special characters in the userInfo component of an URI (#253)

1.5.0

After a really long waiting period, 1.5.0 is finally here with the following changes:

Added

• Response first-line to response string exception (fixes #145)
• A test for #129 behavior

... (truncated)

Sourced from guzzlehttp/psr7's changelog.

1.8.4 - 2022-03-20

Fixed

• Validate header values properly

1.8.3 - 2021-10-05

Fixed

• Return null in caching stream size if remote size is null

1.8.2 - 2021-04-26

Fixed

• Handle possibly unset url in stream_get_meta_data

1.8.1 - 2021-03-21

Fixed

• Issue parsing IPv6 URLs
• Issue modifying ServerRequest lost all its attributes

1.8.0 - 2021-03-21

Added

• Locale independent URL parsing
• Most classes got a @final annotation to prepare for 2.0

Fixed

• Issue when creating stream from php://input and curl-ext is not installed
• Broken Utils::tryFopen() on PHP 8

1.7.0 - 2020-09-30

Added

• Replaced functions by static methods

Fixed

• Converting a non-seekable stream to a string
• Handle multiple Set-Cookie correctly
• Ignore array keys in header values when merging
• Allow multibyte characters to be parsed in Message:bodySummary()

... (truncated)

• 902db15 Release 1.8.4 (#486)
• 1afdd86 Release 1.8.3 (#446)
• a0c4a5f Return null in caching stream size if remote is null (#438)
• 9d00674 Support PHP 8.1 (#435)
• 93c36e7 Updated docs (#434)
• dc960a9 Release 1.8.2 (#416)
• b66d38d Avoid no-url index in stream_get_meta_data (#413)
• 359b1f4 Run php-cs-fixer on 1.x (#407)
• 32a92b3 Merge pull request #408 from Nyholm/links
• b4bb468 Removed broken links
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Sourced from codeception/codeception's releases.

Security fix

• Security fix: Disable deserialization of RunProcess class (#6241) reported by @​snoopysecurity

Sourced from codeception/codeception's changelog.

2.5.6

• [WebDriver] Fixed loadSessionSnapshot with php-webdriver 1.1.3 by @​Naktibalda.
• [WebDriver] Avoid removing required fields in cookies. #5470 by @​JorisVanEijden
• [PhpBrowser][Frameworks] Support for formaction attribute in button to submit forms. By @​Dezzpil
• [FTP] Updated to phpseclib v2 constants
• Fixes: Gherkin Scenarios not loading when specified in group file by @​mozillalives. See #5457

2.5.5

• [Laravel] Fix missing declaration shouldReport in Laravel 5.8 by @​edno
• [Lumen] add support for Laravel\Lumen\Application::boot by @​lendormi
• [WebDriver] Fixed SetCookie for chromedriver 2.46+ by @​JorisVanEijden
• [ZendExpressive] Fixed recreateApplicationBetweenRequests option, by @​artmnv
• [Gherkin] Add possibility to dynamically load contexts (#5409) by @​hansdubois
• [Build command] Fixed message printing number of methods in actor class
• Documented usage of IS NULL in Doctrine module by @​ThomasLandauer

2.5.4

• Restored compatibility with vlucas/phpdotenv v2
• [Doctrine] Fixed cleanup issue #5326

2.5.3

• [Db] cleanup database if populator is used
• [FTP] Compatibility with phpseclib v2 by @​kardagan
• [JsonType] Fixed issue #5230 Dropped filters after a string:regex by @​ellisgl
• [Symfony] Fixed persistent service functionality for Symfony 3 by @​Naktibalda
• [ZendExpressive] Set Cookie header in request by @​Naktibalda
• Updated vlucas/phpdotenv package to ^3.0 version by @​KartaviK
• Documentation improvements by @​chrisaligent @​richleland @​SanzhiyevMergen @​sdlins

2.5.2

• [ZendExppressive] Support for Zend Expressive v3 by @​Naktibalda
• [ZendExppressive] Added options to reload application between tests and between requests by @​Naktibalda
• [Symfony] Fix "already initialized service", "reboot kernel issue" #5262 by @​gdmfx
• {Yii2] Prevent NPE #5259 by @​SilverFire
• [Db] isPopulated method was hidden by renaming to _isPopulated by @​Naktibalda
• [Db] don't clear database for empty dump by @​Slamdunk
• [AMQP] added methods seeQueueIsEmpty, dontSeeQueueIsEmpty, seeNumberOfMessagesInQueue, scheduleQueueCleanup method by @​kardagan
• [REST][PhpBrowser][Frameworks] Save page source as .fail.json or .fail.xml depending on content type, by @​freiondrej
• [Doctrine2] Cleanup property works after on reconfigure #5250 by @​joelmedeiros
• [JsonType] Allow to use : in regex filter (#5273) by @​ellisgl
• [WebDriver] Print curl error to debug output if WebDriver failed to connect #5315 by @​Naktibalda
• [Logger] Ignores empty context and extra fields, by @​siad007
• [Recorder] Improved steps ignoring in Recorder extension with meta steps and annotations support #5210 by @​sspat.
• @dataProvider works with yield/generators #5271 by @​burned42
• Fixed issue ArrayContainsComparator do not Intersect correctly Empty expected nested array #5303 by @​malinink

... (truncated)

• 5ce5d0e 3.1.3
• 802a108 Security: Disable deserialization of RunProcess class (#6241)
• 5ea172d Updated version number and changelog for 3.1.2
• 82d7aaa Merge pull request #5725 from Digital-Peak/configuration/bootstrap
• 50907be Merge pull request #5719 from Mitrichius/5485-coverage-ignore-not-existing-dir
• 920435b Use path resolver for bootstrap file detection
• 48e08e0 [Webdriver] display cookie details in debug output (#5709)
• ffef68b [Db] fix grabFromDatabase description in docs (#5717)
• 131eefb Create FUNDING.yml
• 8cb4a93 coverage: do not fail when excluded directory not exists
• Additional commits viewable in compare view

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.