composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-04-24 02:58:43 +02:00
Code Issues Packages Projects Releases Wiki Activity

N°8017 - Security - dependabot - Symfony's VarDumper vulnerable to un… (#731)

Browse Source 
Upgrade all Symfony components to last security fix (~6.4.0)
This commit is contained in:
Benjamin Dalsass
2025-08-06 08:54:56 +02:00
committed by GitHub
parent 603340b852
commit cdbcd14767
608 changed files with 5020 additions and 3793 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
lib/symfony/dotenv/Command/DotenvDumpCommand.php
View File

@@ -32,7 +32,7 @@ final class DotenvDumpCommand extends Command
private string $projectDir;
private ?string $defaultEnv;
public function __construct(string $projectDir, string $defaultEnv = null)
public function __construct(string $projectDir, ?string $defaultEnv = null)
{
$this->projectDir = $projectDir;
$this->defaultEnv = $defaultEnv;
@@ -95,10 +95,11 @@ EOF;
private function loadEnv(string $dotenvPath, string $env, array $config): array
{
$dotenv = new Dotenv();
$envKey = $config['env_var_name'] ?? 'APP_ENV';
$testEnvs = $config['test_envs'] ?? ['test'];
$dotenv = new Dotenv($envKey);
$globalsBackup = [$_SERVER, $_ENV];
unset($_SERVER[$envKey]);
$_ENV = [$envKey => $env];