Skip to content

Bump studio-42/elfinder from 2.1.62 to 2.1.68#15

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/composer/studio-42/elfinder-2.1.68
Open

Bump studio-42/elfinder from 2.1.62 to 2.1.68#15
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/composer/studio-42/elfinder-2.1.68

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 11, 2026

Bumps studio-42/elfinder from 2.1.62 to 2.1.68.

Release notes

Sourced from studio-42/elfinder's releases.

Version 2.1.68

Changes form previous version

Full Changelog: Studio-42/elFinder@2.1.67...2.1.68

  • Fixing bug where uploading large files sometimes fails (#3761)
  • Fix incorrect URL generation in getContentUrl() (#3759)
  • pressing minimized button ( - ) on the editor while the editor is maximized will close the editor (#3737)
  • Update deprecated php type casts (#3739)
  • fix(mime): normalize MIME mappings and regenerate elFinder.mimetypes.js
  • Update Russian translation and authorship details (#3757)
  • chore(dev): add MIME mapping generator script
  • Use Array.isArray instead of $.isArray (#3771)
  • added "SVG image" & "WEBP image" file type description to "Kind" column when in list view (#3738)
  • Correctly urlencode path in setcookie(); fix Studio-42#3538 (#3754)
  • Create SECURITY.md
  • fix: Pixo Image Editor JS path
  • update: [css] change font-size of preview
  • fix: improve PHP 8 compatibility in session, cURL, and callback handling (#3780)
  • Prepare elFinder for jQuery 4 sup (#3781)
  • fix: example html, js
  • build: add elfinder-minimal
  • feat(editor): add signed callback state storage for external save handlers
  • fix(connector): add CSRF token validation and refresh flow
  • fix(connector): refine CSRF token refresh timing and protected commands
  • fix(js): guard CSRF reload check when xhr is missing
  • fix(onedrive): prefer cached Graph download URLs for file access
  • Preserve i18n keys in mount errors
  • fix:#3782 avoid E_STRICT on PHP 8.4+
  • Update safe CDN versions for external JS libs
  • Normalize MPD text/xml MIME type
  • [i18n:ja] Update elfinder.ja.js
  • fix(connector): normalize PHP error handling and mount failures
  • chore(js): update default CDN library versions
  • chore: ignore local IDE project files
  • docs: fix correct the incorrect date
  • [security] [VD:MySQL] normalize numeric object ids for SQL usage

Version 2.1.67

Changes form previous version

Full Changelog: Studio-42/elFinder@2.1.66...2.1.67

  • [security] fix command injection vulnerability in resize background color handling when using the ImageMagick CLI backend

Version 2.1.66

Changes form previous version

Full Changelog: Studio-42/elFinder@2.1.64...2.1.66

... (truncated)

Changelog

Sourced from studio-42/elfinder's changelog.

2026-05-07 Naoki Sawada

  • elFinder (2.1.69):
    • Only fixes a release error; there are no changes to the functionality.

2026-05-07 Naoki Sawada

  • elFinder (2.1.68):
    • Fixing bug where uploading large files sometimes fails (#3761)
    • Fix incorrect URL generation in getContentUrl() (#3759)
    • pressing minimized button ( - ) on the editor while the editor is maximized will close the editor (#3737)
    • Update deprecated php type casts (#3739)
    • fix(mime): normalize MIME mappings and regenerate elFinder.mimetypes.js
    • Update Russian translation and authorship details (#3757)
    • chore(dev): add MIME mapping generator script
    • Use Array.isArray instead of $.isArray (#3771)
    • added "SVG image" & "WEBP image" file type description to "Kind" column when in list view (#3738)
    • Correctly urlencode path in setcookie(); fix Studio-42#3538 (#3754)
    • Create SECURITY.md
    • fix: Pixo Image Editor JS path
    • update: [css] change font-size of preview
    • fix: improve PHP 8 compatibility in session, cURL, and callback handling (#3780)
    • Prepare elFinder for jQuery 4 sup (#3781)
    • fix: example html, js
    • build: add elfinder-minimal
    • feat(editor): add signed callback state storage for external save handlers
    • fix(connector): add CSRF token validation and refresh flow
    • fix(connector): refine CSRF token refresh timing and protected commands
    • fix(js): guard CSRF reload check when xhr is missing
    • fix(onedrive): prefer cached Graph download URLs for file access
    • Preserve i18n keys in mount errors
    • fix:#3782 avoid E_STRICT on PHP 8.4+
    • Update safe CDN versions for external JS libs
    • Normalize MPD text/xml MIME type
    • [i18n:ja] Update elfinder.ja.js
    • fix(connector): normalize PHP error handling and mount failures
    • chore(js): update default CDN library versions
    • chore: ignore local IDE project files
    • docs: fix correct the incorrect date
    • [security] [VD:MySQL] normalize numeric object ids for SQL usage

2026-04-17 Naoki Sawada

  • elFinder (2.1.67): [security] fix command injection vulnerability in resize background color handling when using the ImageMagick CLI backend

2025-08-28 Naoki Sawada

  • elFinder (2.1.66):
    • [PHP 8.4] Fix: Curl CURLOPT_BINARYTRANSFER deprecated
    • Merge pull request #3629 from Ayesh/php84-curl-depr
    • translate to Chinese
    • Update zh_CN.js
    • Update Chinese help

... (truncated)

Commits
  • c6824bc release elFinder version 2.1.68
  • 9600a9a merge master README.md
  • d03a9c7 src build elFinder-2.1-94b5e89b0
  • c602dbf src build elFinder-2.1-1ed673a0b
  • 22223f3 src build elFinder-2.1-baf5feec0
  • e4b414a src build elFinder-2.1-bf852fb75
  • 6155d27 src build elFinder-2.1-344d7c5e9
  • c387833 src build elFinder-2.1-6ee86b7bd
  • f672f1a src build elFinder-2.1-9b8438d7b
  • 6aee424 src build elFinder-2.1-349a3a248
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump studio-42/elfinder from 2.1.62 to 2.1.68
0affd54 
Bumps [studio-42/elfinder](https://github.com/Studio-42/elFinder) from 2.1.62 to 2.1.68.
- [Release notes](https://github.com/Studio-42/elFinder/releases)
- [Changelog](https://github.com/Studio-42/elFinder/blob/master/Changelog)
- [Commits](Studio-42/elFinder@2.1.62...2.1.68)

---
updated-dependencies:
- dependency-name: studio-42/elfinder
  dependency-version: 2.1.68
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels May 11, 2026
@dependabot dependabot Bot mentioned this pull request May 11, 2026
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants