Skip to content
Snippets Groups Projects
Commit c7ab4499 authored by Claudiu Cristea's avatar Claudiu Cristea
Browse files

ISAICP-7252: Fix SA-CORE-2022-012, 013, 014.

parent 47ecb505
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
composer.lock
+ 46
44
View file @ c7ab4499
...@@ -1785,26 +1785,26 @@ ...@@ -1785,26 +1785,26 @@
}, },
{ {
"name": "drupal/changed_fields", "name": "drupal/changed_fields",
"version": "3.4.0", "version": "3.5.0",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://git.drupalcode.org/project/changed_fields.git", "url": "https://git.drupalcode.org/project/changed_fields.git",
"reference": "8.x-3.4" "reference": "8.x-3.5"
}, },
"dist": { "dist": {
"type": "zip", "type": "zip",
"url": "https://ftp.drupal.org/files/projects/changed_fields-8.x-3.4.zip", "url": "https://ftp.drupal.org/files/projects/changed_fields-8.x-3.5.zip",
"reference": "8.x-3.4", "reference": "8.x-3.5",
"shasum": "1ec5008e7d3121ffba064f53c2c027faaf498125" "shasum": "eafecb0cc3542b49c1ffbbc5080c38572706a204"
}, },
"require": { "require": {
"drupal/core": "^8 || ^9" "drupal/core": "^8 || ^9 || ^10"
}, },
"type": "drupal-module", "type": "drupal-module",
"extra": { "extra": {
"drupal": { "drupal": {
"version": "8.x-3.4", "version": "8.x-3.5",
"datestamp": "1609627343", "datestamp": "1658255238",
"security-coverage": { "security-coverage": {
"status": "covered", "status": "covered",
"message": "Covered by Drupal's security advisory policy" "message": "Covered by Drupal's security advisory policy"
...@@ -1955,16 +1955,16 @@ ...@@ -1955,16 +1955,16 @@
}, },
{ {
"name": "drupal/core", "name": "drupal/core",
"version": "9.4.2", "version": "9.4.3",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://github.com/drupal/core.git", "url": "https://github.com/drupal/core.git",
"reference": "5a4d6acc99e279f70a914804ff3dd08111707de1" "reference": "7b1a403c093c7abc89ef3df1a6b05bdb19b3ffad"
}, },
"dist": { "dist": {
"type": "zip", "type": "zip",
"url": "https://api.github.com/repos/drupal/core/zipball/5a4d6acc99e279f70a914804ff3dd08111707de1", "url": "https://api.github.com/repos/drupal/core/zipball/7b1a403c093c7abc89ef3df1a6b05bdb19b3ffad",
"reference": "5a4d6acc99e279f70a914804ff3dd08111707de1", "reference": "7b1a403c093c7abc89ef3df1a6b05bdb19b3ffad",
"shasum": "" "shasum": ""
}, },
"require": { "require": {
...@@ -2207,13 +2207,13 @@ ...@@ -2207,13 +2207,13 @@
], ],
"description": "Drupal is an open source content management platform powering millions of websites and applications.", "description": "Drupal is an open source content management platform powering millions of websites and applications.",
"support": { "support": {
"source": "https://github.com/drupal/core/tree/9.4.2" "source": "https://github.com/drupal/core/tree/9.4.3"
}, },
"time": "2022-07-07T01:18:39+00:00" "time": "2022-07-20T15:11:38+00:00"
}, },
{ {
"name": "drupal/core-composer-scaffold", "name": "drupal/core-composer-scaffold",
"version": "9.4.2", "version": "9.4.3",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://github.com/drupal/core-composer-scaffold.git", "url": "https://github.com/drupal/core-composer-scaffold.git",
...@@ -2257,7 +2257,7 @@ ...@@ -2257,7 +2257,7 @@
"drupal" "drupal"
], ],
"support": { "support": {
"source": "https://github.com/drupal/core-composer-scaffold/tree/9.4.2" "source": "https://github.com/drupal/core-composer-scaffold/tree/9.4.3"
}, },
"time": "2022-06-19T16:14:23+00:00" "time": "2022-06-19T16:14:23+00:00"
}, },
...@@ -4043,20 +4043,20 @@ ...@@ -4043,20 +4043,20 @@
}, },
{ {
"name": "drupal/inline_entity_form", "name": "drupal/inline_entity_form",
"version": "1.0.0-rc11", "version": "1.0.0-rc12",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://git.drupalcode.org/project/inline_entity_form.git", "url": "https://git.drupalcode.org/project/inline_entity_form.git",
"reference": "8.x-1.0-rc11" "reference": "8.x-1.0-rc12"
}, },
"dist": { "dist": {
"type": "zip", "type": "zip",
"url": "https://ftp.drupal.org/files/projects/inline_entity_form-8.x-1.0-rc11.zip", "url": "https://ftp.drupal.org/files/projects/inline_entity_form-8.x-1.0-rc12.zip",
"reference": "8.x-1.0-rc11", "reference": "8.x-1.0-rc12",
"shasum": "67a92ec1482be19b2f2091ca9498f585e34072b9" "shasum": "eddee2964823b7da2ec7032ddb871f247ba7ed7a"
}, },
"require": { "require": {
"drupal/core": "^8.8 || ^9", "drupal/core": "^8.8 || ^9 || ^10",
"php": ">=7.1" "php": ">=7.1"
}, },
"require-dev": { "require-dev": {
...@@ -4065,8 +4065,8 @@ ...@@ -4065,8 +4065,8 @@
"type": "drupal-module", "type": "drupal-module",
"extra": { "extra": {
"drupal": { "drupal": {
"version": "8.x-1.0-rc11", "version": "8.x-1.0-rc12",
"datestamp": "1648748863", "datestamp": "1658308069",
"security-coverage": { "security-coverage": {
"status": "not-covered", "status": "not-covered",
"message": "RC releases are not covered by Drupal security advisories." "message": "RC releases are not covered by Drupal security advisories."
...@@ -9150,23 +9150,22 @@ ...@@ -9150,23 +9150,22 @@
}, },
{ {
"name": "laminas/laminas-servicemanager", "name": "laminas/laminas-servicemanager",
"version": "3.15.0", "version": "3.15.1",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://github.com/laminas/laminas-servicemanager.git", "url": "https://github.com/laminas/laminas-servicemanager.git",
"reference": "65910ef6a8066b0369fab77fbec9e030be59c866" "reference": "216f972b179191b14c33a79337947b63bf7808ff"
}, },
"dist": { "dist": {
"type": "zip", "type": "zip",
"url": "https://api.github.com/repos/laminas/laminas-servicemanager/zipball/65910ef6a8066b0369fab77fbec9e030be59c866", "url": "https://api.github.com/repos/laminas/laminas-servicemanager/zipball/216f972b179191b14c33a79337947b63bf7808ff",
"reference": "65910ef6a8066b0369fab77fbec9e030be59c866", "reference": "216f972b179191b14c33a79337947b63bf7808ff",
"shasum": "" "shasum": ""
}, },
"require": { "require": {
"composer-plugin-api": "^2.0",
"laminas/laminas-stdlib": "^3.2.1", "laminas/laminas-stdlib": "^3.2.1",
"php": "~7.4.0 || ~8.0.0 || ~8.1.0", "php": "~7.4.0 || ~8.0.0 || ~8.1.0",
"psr/container": "^1.1 || ^2.0.2" "psr/container": "^1.0"
}, },
"conflict": { "conflict": {
"ext-psr": "*", "ext-psr": "*",
...@@ -9175,14 +9174,16 @@ ...@@ -9175,14 +9174,16 @@
"zendframework/zend-servicemanager": "*" "zendframework/zend-servicemanager": "*"
}, },
"provide": { "provide": {
"psr/container-implementation": "^1.1 || ^2.0" "psr/container-implementation": "^1.0"
}, },
"replace": { "replace": {
"container-interop/container-interop": "^1.2.0" "container-interop/container-interop": "^1.2.0"
}, },
"require-dev": { "require-dev": {
"composer/package-versions-deprecated": "^1.0",
"laminas/laminas-coding-standard": "~2.3.0", "laminas/laminas-coding-standard": "~2.3.0",
"laminas/laminas-container-config-test": "^0.6", "laminas/laminas-container-config-test": "^0.6",
"laminas/laminas-dependency-plugin": "^2.1.2",
"mikey179/vfsstream": "^1.6.10@alpha", "mikey179/vfsstream": "^1.6.10@alpha",
"ocramius/proxy-manager": "^2.11", "ocramius/proxy-manager": "^2.11",
"phpbench/phpbench": "^1.1", "phpbench/phpbench": "^1.1",
...@@ -9236,7 +9237,7 @@ ...@@ -9236,7 +9237,7 @@
"type": "community_bridge" "type": "community_bridge"
} }
], ],
"time": "2022-07-18T21:18:56+00:00" "time": "2022-07-20T09:48:45+00:00"
}, },
{ {
"name": "laminas/laminas-stdlib", "name": "laminas/laminas-stdlib",
...@@ -11605,19 +11606,20 @@ ...@@ -11605,19 +11606,20 @@
}, },
{ {
"name": "solarium/solarium", "name": "solarium/solarium",
"version": "6.2.4", "version": "6.2.5",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://github.com/solariumphp/solarium.git", "url": "https://github.com/solariumphp/solarium.git",
"reference": "fcec5684ee3f2d73a8f06a9fbd0e25d2537e1ab2" "reference": "b3de12c7c5bba3f9a5955729ff5f7938c2b79789"
}, },
"dist": { "dist": {
"type": "zip", "type": "zip",
"url": "https://api.github.com/repos/solariumphp/solarium/zipball/fcec5684ee3f2d73a8f06a9fbd0e25d2537e1ab2", "url": "https://api.github.com/repos/solariumphp/solarium/zipball/b3de12c7c5bba3f9a5955729ff5f7938c2b79789",
"reference": "fcec5684ee3f2d73a8f06a9fbd0e25d2537e1ab2", "reference": "b3de12c7c5bba3f9a5955729ff5f7938c2b79789",
"shasum": "" "shasum": ""
}, },
"require": { "require": {
"composer-runtime-api": ">=2.0",
"ext-json": "*", "ext-json": "*",
"php": "^7.3 || ^8.0", "php": "^7.3 || ^8.0",
"psr/event-dispatcher": "^1.0", "psr/event-dispatcher": "^1.0",
...@@ -11662,9 +11664,9 @@ ...@@ -11662,9 +11664,9 @@
], ],
"support": { "support": {
"issues": "https://github.com/solariumphp/solarium/issues", "issues": "https://github.com/solariumphp/solarium/issues",
"source": "https://github.com/solariumphp/solarium/tree/6.2.4" "source": "https://github.com/solariumphp/solarium/tree/6.2.5"
}, },
"time": "2022-06-30T10:48:47+00:00" "time": "2022-07-20T11:51:35+00:00"
}, },
{ {
"name": "spdx/license-list-data", "name": "spdx/license-list-data",
...@@ -20446,16 +20448,16 @@ ...@@ -20446,16 +20448,16 @@
}, },
{ {
"name": "phpstan/phpstan", "name": "phpstan/phpstan",
"version": "1.8.1", "version": "1.8.2",
"source": { "source": {
"type": "git", "type": "git",
"url": "https://github.com/phpstan/phpstan.git", "url": "https://github.com/phpstan/phpstan.git",
"reference": "8dbba631fa32f4b289404469c2afd6122fd61d67" "reference": "c53312ecc575caf07b0e90dee43883fdf90ca67c"
}, },
"dist": { "dist": {
"type": "zip", "type": "zip",
"url": "https://api.github.com/repos/phpstan/phpstan/zipball/8dbba631fa32f4b289404469c2afd6122fd61d67", "url": "https://api.github.com/repos/phpstan/phpstan/zipball/c53312ecc575caf07b0e90dee43883fdf90ca67c",
"reference": "8dbba631fa32f4b289404469c2afd6122fd61d67", "reference": "c53312ecc575caf07b0e90dee43883fdf90ca67c",
"shasum": "" "shasum": ""
}, },
"require": { "require": {
...@@ -20481,7 +20483,7 @@ ...@@ -20481,7 +20483,7 @@
"description": "PHPStan - PHP Static Analysis Tool", "description": "PHPStan - PHP Static Analysis Tool",
"support": { "support": {
"issues": "https://github.com/phpstan/phpstan/issues", "issues": "https://github.com/phpstan/phpstan/issues",
"source": "https://github.com/phpstan/phpstan/tree/1.8.1" "source": "https://github.com/phpstan/phpstan/tree/1.8.2"
}, },
"funding": [ "funding": [
{ {
...@@ -20501,7 +20503,7 @@ ...@@ -20501,7 +20503,7 @@
"type": "tidelift" "type": "tidelift"
} }
], ],
"time": "2022-07-12T16:08:06+00:00" "time": "2022-07-20T09:57:31+00:00"
}, },
{ {
"name": "phpstan/phpstan-deprecation-rules", "name": "phpstan/phpstan-deprecation-rules",
......
web/sites/default/default.settings.php
+ 23
0
View file @ c7ab4499
...@@ -490,6 +490,29 @@ ...@@ -490,6 +490,29 @@
*/ */
# $settings['file_public_path'] = 'sites/default/files'; # $settings['file_public_path'] = 'sites/default/files';
/**
* Additional public file schemes:
*
* Public schemes are URI schemes that allow download access to all users for
* all files within that scheme.
*
* The "public" scheme is always public, and the "private" scheme is always
* private, but other schemes, such as "https", "s3", "example", or others,
* can be either public or private depending on the site. By default, they're
* private, and access to individual files is controlled via
* hook_file_download().
*
* Typically, if a scheme should be public, a module makes it public by
* implementing hook_file_download(), and granting access to all users for all
* files. This could be either the same module that provides the stream wrapper
* for the scheme, or a different module that decides to make the scheme
* public. However, in cases where a site needs to make a scheme public, but
* is unable to add code in a module to do so, the scheme may be added to this
* variable, the result of which is that system_file_download() grants public
* access to all files within that scheme.
*/
# $settings['file_additional_public_schemes'] = ['example'];
/** /**
* Private file path: * Private file path:
* *
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment