From 2309093f512bab188b6d4e6e93026c77a368e895 Mon Sep 17 00:00:00 2001 From: Olivier ALLAIN Date: Mon, 17 Nov 2025 10:13:52 +0100 Subject: [PATCH 1/4] CI - Composer insecure disable --- Makefile | 1 + 1 file changed, 1 insertion(+) diff --git a/Makefile b/Makefile index 5b149283..d6255266 100644 --- a/Makefile +++ b/Makefile @@ -43,6 +43,7 @@ else ${COMPOSER_ROOT} create-project sylius/sylius-standard ${TEST_DIRECTORY} "~${SYLIUS_VERSION}" --no-install --no-scripts endif ${COMPOSER} config allow-plugins true + jq '.config.audit."ignore-unreachable" = false' composer.json > tmp.json && mv tmp.json composer.json ifeq ($(shell [[ $(SYLIUS_VERSION) == *dev ]] && echo true ),true) ${COMPOSER} require sylius/sylius:"${SYLIUS_VERSION}" else From e63d6a3150a5b449f68fb083c983971bd9f0209e Mon Sep 17 00:00:00 2001 From: Olivier ALLAIN Date: Mon, 17 Nov 2025 10:57:46 +0100 Subject: [PATCH 2/4] CI - fix errors --- .github/workflows/analysis.yaml | 3 --- src/Twig/BytesFormatterExtension.php | 2 +- 2 files changed, 1 insertion(+), 4 deletions(-) diff --git a/.github/workflows/analysis.yaml b/.github/workflows/analysis.yaml index f3025572..78b3a053 100644 --- a/.github/workflows/analysis.yaml +++ b/.github/workflows/analysis.yaml @@ -76,6 +76,3 @@ jobs: name: 'GrumPHP - Run' run: 'if [ -f grumphp.yml ]; then vendor/bin/grumphp run ; else echo Grumphp ruleset file does not exist, skipping step ; fi' if: 'always() && steps.end-of-setup.outcome == ''success''' - - - uses: symfonycorp/security-checker-action@v3 - if: 'always() && steps.end-of-setup.outcome == ''success''' diff --git a/src/Twig/BytesFormatterExtension.php b/src/Twig/BytesFormatterExtension.php index 022d822e..df4f9069 100644 --- a/src/Twig/BytesFormatterExtension.php +++ b/src/Twig/BytesFormatterExtension.php @@ -25,7 +25,7 @@ public function formatBytes(int $bytes): string } try { - $number = floor(log($bytes, 1024)); + $number = (int) floor(log($bytes, 1024)); return round($bytes / (1024 ** $number), [0, 2, 2, 2, 3][$number]) . ['B', 'kB', 'MB', 'GB', 'TB'][$number]; } catch (\Throwable) { From 396d337a582f71aed7017551b0af10b64f6a21cb Mon Sep 17 00:00:00 2001 From: Olivier ALLAIN Date: Mon, 17 Nov 2025 11:00:02 +0100 Subject: [PATCH 3/4] CI - Composer insecure disable in project --- Makefile | 3 ++- composer.json | 3 +++ 2 files changed, 5 insertions(+), 1 deletion(-) diff --git a/Makefile b/Makefile index d6255266..7a094a10 100644 --- a/Makefile +++ b/Makefile @@ -43,7 +43,8 @@ else ${COMPOSER_ROOT} create-project sylius/sylius-standard ${TEST_DIRECTORY} "~${SYLIUS_VERSION}" --no-install --no-scripts endif ${COMPOSER} config allow-plugins true - jq '.config.audit."ignore-unreachable" = false' composer.json > tmp.json && mv tmp.json composer.json + # CVE are deliberately ignored + ${COMPOSER} config audit.ignore CVE-2025-31481 CVE-2025-31485 PKSA-gs8r-6kz6-pp56 PKSA-gnn4-pxdg-q76m PKSA-4g5g-4rkv-myqs ifeq ($(shell [[ $(SYLIUS_VERSION) == *dev ]] && echo true ),true) ${COMPOSER} require sylius/sylius:"${SYLIUS_VERSION}" else diff --git a/composer.json b/composer.json index 54f720d2..fe7e8d3c 100644 --- a/composer.json +++ b/composer.json @@ -70,6 +70,9 @@ } }, "config": { + "audit": { + "block-insecure": false + }, "sort-packages": true, "allow-plugins": { "dealerdirect/phpcodesniffer-composer-installer": true, From 4e3aa55a7335ea842b79fe112022ecd06f6b9b84 Mon Sep 17 00:00:00 2001 From: Olivier ALLAIN Date: Mon, 17 Nov 2025 11:44:29 +0100 Subject: [PATCH 4/4] CI - node version --- .github/workflows/sylius.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/.github/workflows/sylius.yaml b/.github/workflows/sylius.yaml index 9619243f..f598a608 100644 --- a/.github/workflows/sylius.yaml +++ b/.github/workflows/sylius.yaml @@ -25,7 +25,7 @@ jobs: symfony: - 6.4 node: - - 14.x + - 20.x env: APP_ENV: test package-name: synolia/sylius-scheduler-command-plugin