Releases: Sylius/Sylius
Releases · Sylius/Sylius
v1.13.4
TL;DR
🔒 This is a security release!
Fixes the following vulnerability: Ability to retrieve Adjustments with an incremental integer ID in an API endpoint
Details
- #16469 Use interface for a response checker dependency (@jaroslavtyc)
- #16544 [Docs] Update Taxon-Menu Page To Reflect Current Fixtures Configuration (@Rafikooo)
- #16550 [Behat] Enable Accessing The Product Edit Page From The Show Page Scenarios (@Rafikooo)
- #16171 More informative errror in ShowPage.php (@lechbaczynski)
- #16581 [CS][DX] Refactor
- #16592 [API] Disable shop GET adjustment endpoint (@mpysiak, @GSadee)
New Contributors
- @jaroslavtyc made their first contribution in #16469
- @lechbaczynski made their first contribution in #16171
Full Changelog: v1.13.3...v1.13.4
v1.12.19
TL;DR
🔒 This is a security release!
Fixes the following vulnerability: Ability to retrieve Adjustments with an incremental integer ID in an API endpoint
Details
- #16544 [Docs] Update Taxon-Menu Page To Reflect Current Fixtures Configuration (@Rafikooo)
- #16592 [API] Disable shop GET adjustment endpoint (@mpysiak, @GSadee)
Full Changelog: v1.12.18...v1.12.19
v1.13.3
Details
- #16393 [User] Update the default tokens' length and the upper limit (@NoResponseMate)
- #16392 [Core] Add order token length to configuration (@NoResponseMate)
- #16410 [CS][DX] Refactor
- #16419 [User] Reflect New Default Token Length in the Packages Tests (@Rafikooo)
- #16431 [CI] Change the version of Chrome (@GSadee)
- #16432 [CI] Change the version of Chrome from hardcoded one to stable (@GSadee)
- #16439 Correct wrong command in the platform's cron example docs (@TheMilek)
- #16441 Update README.md (@kulczy)
- #16436 Sylius Plus modular installation and upgrading (@CoderMaggie)
- #16435 [CI] Update Upmerge Strategy (@Rafikooo)
- #16452 [Docs] Add a link to the database schema (@CoderMaggie)
- #16500 [Documentation] Update Sylius 1.12 version on the release cycle page + update PR template (@GSadee)
- #16477 Fix ProductTaxons' positioning logic (@NoResponseMate)
- #16380 Fix products grid for mobile (@Yanick-K)
- #16474 Update model.rst (@zairigimad)
- #16475 Update repository.rst (@zairigimad)
New Contributors
Full Changelog: v1.13.2...v1.13.3
v1.12.18
Details
- #16393 [User] Update the default tokens' length and the upper limit (@NoResponseMate)
- #16392 [Core] Add order token length to configuration (@NoResponseMate)
- #16410 [CS][DX] Refactor
- #16431 [CI] Change the version of Chrome (@GSadee)
- #16432 [CI] Change the version of Chrome from hardcoded one to stable (@GSadee)
- #16439 Correct wrong command in the platform's cron example docs (@TheMilek)
- #16436 Sylius Plus modular installation and upgrading (@CoderMaggie)
- #16500 [Documentation] Update Sylius 1.12 version on the release cycle page + update PR template (@GSadee)
- #16477 Fix ProductTaxons' positioning logic (@NoResponseMate)
- #16380 Fix products grid for mobile (@Yanick-K)
New Contributors
Full Changelog: v1.12.17...v1.12.18
v1.13.2
Details
- #16246 Add the "sylius/state-machine-abstraction" package to the replace section in the root composer.json (@jakubtobiasz)
- #16252 [AbstractStateMachine] Add twig extension (@Wojdylak)
- #16290 Update bunnyshell.yaml, use network type volumes for mysql-data (@mihaichitic)
- #16293 [Core] Add Sylius Plus info Command (@mpysiak)
- #16297 [Core] Change Show Plus Info command namespace (@mpysiak)
- #16279 [Docs] Sylius Cloud by Platform.sh (@senghe, @CoderMaggie)
- #16310 [Behat] Allow to use ApiPlatformSecurityClient with another login endpoint (@Prometee)
- #16322 Core ItemTotalRuleChecker is missing type constant (@esserj)
- #16323 Sylius Community Edition naming in docs (@CoderMaggie)
- #16324 Mark
tracked
andshippingRequired
as not required fields (@loevgaard) - #16329 [PHPStan]
Negated Boolean Expression Is Always True
Issue Fix (@Rafikooo) - #16307 Fix wrong calculation of available stock during completing a payment (@GSadee)
- #16335 [Inventory] Adjust OrderInventoryOperator spec for exceptions changes (@GSadee)
- #16344 [Inventory] Extract service for checking reserved stock availability for given order item (@GSadee)
- #16342 Resolve createdByGuest on order fixtures (@TheMilek)
- #16321 Improve Order get endpoints (@TheMilek)
- #16352 [CS][DX] Refactor
- #16353 [CS][DX] Refactor
- #16358 [API] Adjust adjustments contract tests after upmerge (@GSadee)
- #16360 Add a note to UPGRADE file about changing PaymentPreCompleteListener's constructor (@GSadee)
Full Changelog: v1.13.1...v1.13.2
v1.12.17
Details
- #16290 Update bunnyshell.yaml, use network type volumes for mysql-data (@mihaichitic)
- #16293 [Core] Add Sylius Plus info Command (@mpysiak)
- #16297 [Core] Change Show Plus Info command namespace (@mpysiak)
- #16279 [Docs] Sylius Cloud by Platform.sh (@senghe, @CoderMaggie)
- #16323 Sylius Community Edition naming in docs (@CoderMaggie)
- #16324 Mark
tracked
andshippingRequired
as not required fields (@loevgaard) - #16329 [PHPStan]
Negated Boolean Expression Is Always True
Issue Fix (@Rafikooo) - #16307 Fix wrong calculation of available stock during completing a payment (@GSadee)
- #16335 [Inventory] Adjust OrderInventoryOperator spec for exceptions changes (@GSadee)
- #16344 [Inventory] Extract service for checking reserved stock availability for given order item (@GSadee)
- #16342 Resolve createdByGuest on order fixtures (@TheMilek)
- #16321 Improve Order get endpoints (@TheMilek)
- #16352 [CS][DX] Refactor
Full Changelog: v1.12.16...v1.12.17
v1.13.1
TL;DR
🔒 This is a security release!
Fixes the following vulnerabilities:
- Potential Cross Site Scripting (XSS) via the "Province" field in the Checkout and Address Book
- Potential Cross Site Scripting (XSS) via the "Name" field (Taxons, Products, Options, Variants) in the Admin Panel
Details
- #16176 [Maintenance][AbstractStateMachine] Add Sylius logo to readme (@Wojdylak)
- #16179 [Documentation] Update release cycle and PR template (@GSadee)
- #16190 Fix products grid (@kulczy)
- #16196 Fix product review validation's notInRangeMessage (@mpysiak)
- #16226 Remove unneeded placeholder from zone's scope select (@TheMilek)
- #16241 [Security] Fixes for potential XSS in the Checkout, Address Book and Admin Panel (@GSadee)
- #16232 [Maintenance] Update docker docs (@Wojdylak)
- #16233 Add wider support for deprecation contract (@Jibbarth)
Full Changelog: v1.13.0...v1.13.1
v1.12.16
TL;DR
🔒 This is a security release!
Fixes the following vulnerabilities:
- Potential Cross Site Scripting (XSS) via the "Province" field in the Checkout and Address Book
- Potential Cross Site Scripting (XSS) via the "Name" field (Taxons, Products, Options, Variants) in the Admin Panel
Details
- #16179 [Documentation] Update release cycle and PR template (@GSadee)
- #16190 Fix products grid (@kulczy)
- #16196 Fix product review validation's notInRangeMessage (@mpysiak)
- #16226 Remove unneeded placeholder from zone's scope select (@TheMilek)
- #16241 [Security] Fixes for potential XSS in the Checkout, Address Book and Admin Panel (@GSadee)
- #16232 [Maintenance] Update docker docs (@Wojdylak)
Full Changelog: v1.12.15...v1.12.16
v1.13.0
TL;DR
- stabilized API with Shop and Admin functionalities covered
- Symfony Workflow support
- services autoconfiguration with PHP8 Attributes and Interfaces
- Price History feature
and many more 💃
Details (full changelog between 1.12 and 1.13 versions)
- #14379 [Admin] Cart promotions translations for labels (@ernestWarwas)
- #14483 Updating the RemoveExpiredCartCommand (@mamazu)
- #14502 [Maintenance] Improve deprecation notice (@lchrusciel)
- #14519 Refresh readme banner (@kulczy)
- #14478 Add PaymentFixture (@TheMilek)
- #14550 [Admin][Customer] Filtering customers by groups (@NoResponseMate)
- #14565 [Order] Add cart summary event (@NoResponseMate)
- #14485 Adding a filter for state in product review grid (@mamazu)
- #14529 Prepare for releasing @sylius-ui/frontend npm package (@jakubtobiasz)
- #14607 [CS][DX] Refactor ()
- #14571 Create admin user with CLI (@johbuch, @ernestWarwas, @Rafikooo)
- #14568 [Catalog Promotions] Put catalog promotions into the processing state right after the delete request and keep this state until being removed (@coldic3)
- #14660 [Maintenance] PHPUnit upgrade to ^9.5 (@Rafikooo)
- #14654 Add a cookbook about dealing with multiple channels in console commands (@jakubtobiasz)
- #14629 [DX] Store passwords in plaintext in test environment (@coldic3)
- #14658 [CS][DX] Refactor (@bot@@sylius.@org)
- #14668 Improve "Handle multiple channels in CLI" cookbook (@jakubtobiasz)
- #14696 Remove yarn.lock file (@jakubtobiasz)
- #14708 Add missing final keywords to Spec tests (@jakubtobiasz)
- #14709 Drop unneeded @javascript tag (@jakubtobiasz)
- #14718 [CS][DX] Refactor ()
- #14598 [API] Mapping/serialization cleanup (@NoResponseMate)
- #14655 Improve error handling while password resetting (@jakubtobiasz)
- #14713 [Core] Optimize UnpaidOrdersStateUpdater (@coldic3)
- #14693 [Feature] Allows
row_attr
on form rows (@Prometee) - #14724 As an Admin, I want to modify taxons of a product (@everwhatever)
- #14710 Refactor CI (@jakubtobiasz)
- #14732 [Fix] Mark PHPSpec class as final (@Rafikooo)
- #13445 [Promotion] Add a label for filters (@pjurasek)
- #14581 Fix dev dockerfile: add curl (@Nek-)
- #14734 Adjust GitHub Actions jobs' names (@jakubtobiasz)
- #14741 [CS][DX] Refactor ()
- #14698 ApiBundle fixes in composer.js (@dawkaa)
- #14742 Refactor Workflows to use two type of builds (@jakubtobiasz)
- #14747 Make build notifier running always event on failed builds (@jakubtobiasz)
- #14665 [Feature][Command] CreateAdminUserCommand - add AdminUser entity validation (@Rafikooo)
- #14737 Add a custom workflow for Symfony 6.3 (@jakubtobiasz)
- #14470 Update doctrine/cache requirement from ^1.10 to ^2.2 (@dependabot[@bot])
- #14771 Change the scheduled hour for full workflow to be different than in 1.12 branch (@GSadee)
- #14769 [CS][DX] Refactor ()
- #14786 Fix CI Full to run both 1.12 and 1.13 (@jakubtobiasz)
- #14756 [API] Get admin detail information (@dawkaa)
- #14754 Add PHP 8.2 to workflows (@jakubtobiasz)
- #14728 [API] Fix admin's side can't create new taxonomy (@dawkaa)
- #12556 Add an option to use icon-only buttons on grids (@loic425)
- #13440 Add documentation for non-labeled actions (@loic425)
- #14790 Update RequestBuilder.php to PHP 8 new features (@dawkaa)
- #14794 [CS][DX] Refactor ()
- #13045 Association hydrator private in product repo should be protected (@Nek-)
- #14821 [CS][DX] Refactor ()
- #14822 [CI] Remove PHP 8.2 from packages tests of the unmaintained Swiftmailer (@GSadee)
- #14798 Reorder order's sidebar in admin (@jakubtobiasz)
- #14811 Cover managing the tax rates in API (@hatem20, @jakubtobiasz)
- #14831 [CS][DX] Refactor ()
- #14833 Allow to define a priority on autoconfigured order processors and cart contexts (@jakubtobiasz)
- #14840 [CS][DX] Refactor ()
- #14843 Add a note about autoconfiguring order processor with an attribute (@jakubtobiasz)
- #14623 chore: tag OrderTaxesApplicatorInterface (@Florian-Merle)
- #14848 [Dependencies] Bump up API Platform to 2.7.10 (@GSadee)
- #10690 [Attributes] Add FloatAttributeType Feature (@panigrc, @TheMilek)
- #14852 [PriceHistory] Behat scenarios (@Rafikooo)
- #14860 [Behat][API] Common saving within contexts (@Rafikooo)
- #14864 [TaxRate][UI] Add missing behat step implementation (@Rafikooo)
- #14862 [Behat][PriceHistory] Adjust scenarios for displaying lowest price according to the excluded taxons (@GSadee)
- #14854 [PriceHistory][API] ChannelPricingLogEntry implementation (@Rafikooo)
- #14866 [PriceHistory][UI] ChannelPricingLogEntry implementation (@Rafikooo)
- [#14867](#1486...
v1.12.15
Details
- #16076 BUGFIX: [AdminBundle] #16031 wrap long text in notes section (@crydotsnake)
- #16099 BUGFIX: [ShopBundle] #16068 wrap long text in product description (@crydotsnake)
- #15510 [Documentation] Update docs/book/architecture/state_machine.rst (@benbd5, @GSadee)
- #16125 [Documentation] Update release dates for 1.13 and 2.0 versions (@GSadee)
- #16128 Add twig 3.9.0 conflict (@mpysiak)
- #16131 Revert conflict to twig/intl-extra (@GSadee)
- #16134 Fix Sylius logo in READMEs of Bundles & Components (@mpysiak)
- #16158 Update dead link in drivers.rst (@binhuq)
New Contributors
Full Changelog: v1.12.14...v1.12.15