Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump omnipay/sagepay from 4.1.1 to 4.1.2 #239

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump omnipay/sagepay from 4.1.1 to 4.1.2 #239

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github May 16, 2024
edited
Loading

Bumps omnipay/sagepay from 4.1.1 to 4.1.2.

Release notes

Sourced from omnipay/sagepay's releases.

Update deprecated notification handler for V4 protocol

PR #198 - see notes on that PR for more details on how to use the non-deprecated request and response.

This fixes the signature check for classes that handle the server notification validation and response that have been deprecated sine protocol V4 was released. These classes were never updated for protocol V4, and it seems have been used against protocol V3 for some time with no problems.

The new Opayo URLs are only in the protocol V4 release of this package, and people upgrading and still using the deprecated classes were finding it was breaking the notification. This fix will allow those deprecated classes to continue to be used as a quick workaround. I do recommend changing the way the notifications are received and responde to, however, in line with the README.

Many thanks to @​Ferrisbane for this fix, and many apologies for not recognising what was happening for people reporting the 5006 error, since is was working for me and I could not reproduce the error - ducks.

Commits
  • 2a2dd85 Merge pull request #198 from Ferrisbane/Ferrisbane-patch-protocol-4-0-fields
  • 00d54b3 Updated server gateway test to check protocol 4.00 fields
  • 9f426ac Update VPS Signature to include protocol 4.0 new fields
  • 79bbd99 Update title of driver
  • c9407e5 Issue #194 introduce Opayo as the new name for the gateway
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label May 16, 2024
@dependabot dependabot bot mentioned this pull request May 16, 2024
Closed
@private-packagist Private Packagist
Copy link

composer.lock

Package changes

Package Operation From To About
symfony/polyfill-php80 add - v1.29.0 view code - License: MIT License
symfony/polyfill-php83 add - v1.29.0 view code - License: MIT License
clue/stream-filter upgrade v1.6.0 v1.7.0 diff
guzzlehttp/guzzle upgrade 7.5.0 7.8.1 diff
guzzlehttp/promises upgrade 1.5.2 2.0.2 diff
guzzlehttp/psr7 upgrade 2.4.3 ⚠️ 2.6.2 ✅ diff
moneyphp/money upgrade v3.3.3 v4.5.0 diff
omnipay/common upgrade v3.2.0 v3.3.0 diff
omnipay/sagepay upgrade 4.1.1 4.1.2 diff
php-http/discovery upgrade 1.14.3 1.19.4 diff
php-http/httplug upgrade 2.3.0 2.4.0 diff
php-http/message upgrade 1.13.0 1.16.1 diff
php-http/message-factory upgrade v1.0.2 1.1.0 diff
php-http/promise upgrade 1.1.0 1.3.1 diff
psr/http-client upgrade 1.0.1 1.0.3 diff
psr/http-factory upgrade 1.0.1 1.1.0 diff
psr/http-message upgrade 1.0.1 2.0 diff
symfony/deprecation-contracts upgrade v3.2.0 v3.5.0 diff
symfony/http-foundation upgrade v6.2.2 v6.4.7 diff
symfony/polyfill-mbstring upgrade v1.27.0 v1.29.0 diff

Settings · Docs · Powered by Private Packagist

@codepuncher
Copy link
Member

@dependabot rebase

@dependabot Dependabot
Copy link
Author

dependabot bot commented on behalf of github May 16, 2024

Looks like this PR is already up-to-date with master! If you'd still like to recreate it from scratch, overwriting any edits, you can request @dependabot recreate.

@codepuncher codepuncher removed the dependencies Pull requests that update a dependency file label May 17, 2024
@codepuncher
Copy link
Member

@dependabot recreate

@codepuncher codepuncher added the dependencies Pull requests that update a dependency file label May 17, 2024
@dependabot
Bump omnipay/sagepay from 4.1.1 to 4.1.2
8fc954c 
Bumps [omnipay/sagepay](https://github.com/thephpleague/omnipay-sagepay) from 4.1.1 to 4.1.2.
- [Release notes](https://github.com/thephpleague/omnipay-sagepay/releases)
- [Commits](thephpleague/omnipay-sagepay@4.1.1...4.1.2)

---
updated-dependencies:
- dependency-name: omnipay/sagepay
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot force-pushed the dependabot/composer/omnipay/sagepay-4.1.2 branch from a3e087a to 8fc954c Compare May 17, 2024 11:07
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@codepuncher