Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bump symfony/cache from 4.2.7 to 4.3.9 #1

merged 1 commit into from Dec 3, 2019


@dependabot @github
Copy link

dependabot bot commented on behalf of github Dec 3, 2019

Bumps symfony/cache from 4.2.7 to 4.3.9.


Sourced from symfony/cache's changelog.



  • removed all PSR-16 implementations in the Simple namespace
  • removed SimpleCacheAdapter
  • removed AbstractAdapter::unserialize()
  • removed CacheItem::getPreviousTags()


  • added support for connecting to Redis Sentinel clusters
  • added argument $prefix to AdapterInterface::clear()
  • improved RedisTagAwareAdapter to support Redis server >= 2.8 and up to 4B items per tag
  • added TagAwareMarshaller for optimized data storage when using AbstractTagAwareAdapter
  • added DeflateMarshaller to compress serialized values
  • removed support for phpredis 4 compression
  • [BC BREAK] RedisTagAwareAdapter is not compatible with RedisCluster from Predis anymore, use phpredis instead
  • Marked the CacheDataCollector class as @final.


  • removed psr/simple-cache dependency, run composer require psr/simple-cache if you need it
  • deprecated all PSR-16 adapters, use Psr16Cache or Symfony\Contracts\Cache\CacheInterface implementations instead
  • deprecated SimpleCacheAdapter, use Psr16Adapter instead


  • added support for connecting to Redis clusters via DSN
  • added support for configuring multiple Memcached servers via DSN
  • added MarshallerInterface and DefaultMarshaller to allow changing the serializer and provide one that automatically uses igbinary when available
  • implemented CacheInterface, which provides stampede protection via probabilistic early expiration and should become the preferred way to use a cache
  • added sub-second expiry accuracy for backends that support it
  • added support for phpredis 4 compression and tcp_keepalive options
  • added automatic table creation when using Doctrine DBAL with PDO-based backends
  • throw LogicException when CacheItem::tag() is called on an item coming from a non tag-aware pool
  • deprecated CacheItem::getPreviousTags(), use CacheItem::getMetadata() instead
  • deprecated the AbstractAdapter::unserialize() and AbstractCache::unserialize() methods
  • added CacheCollectorPass (originally in FrameworkBundle)
  • added CachePoolClearerPass (originally in FrameworkBundle)
  • added CachePoolPass (originally in FrameworkBundle)
  • added CachePoolPrunerPass (originally in FrameworkBundle)


... (truncated)
  • 2a7bcc5 Merge branch '3.4' into 4.3
  • 3d9f46a Fix failures on PHP 7.4
  • 9dc6d6d Merge branch '3.4' into 4.3
  • 3da9b98 [Cache] Make sure we get the correct number of values from redis::mget()
  • 73e461c [Cache] Disable igbinary on PHP >= 7.4
  • f94d67b catch exceptions when using PDO directly
  • 83dca34 Merge branch '3.4' into 4.3
  • 8d5db9c security #cve-2019-18889 [Cache] forbid serializing AbstractAdapter and TagAw...
  • 30a51b2 [4.3] Remove unused local variables
  • 08b664a Merge branch '3.4' into 4.3
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the Security Alerts page.

Bumps [symfony/cache]( from 4.2.7 to 4.3.9.
- [Release notes](
- [Changelog](
- [Commits](symfony/cache@v4.2.7...v4.3.9)

Signed-off-by: dependabot[bot] <>
@dependabot dependabot bot added the dependencies label Dec 3, 2019
itsjavi approved these changes Dec 3, 2019
@itsjavi itsjavi merged commit 2bf934d into master Dec 3, 2019
@itsjavi itsjavi deleted the dependabot/composer/symfony/cache-4.3.9 branch Dec 3, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
None yet
1 participant
You can’t perform that action at this time.