Skip to content

Chore(deps): Bump the dependencies group across 1 directory with 6 updates #3079

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Chore(deps): Bump the dependencies group across 1 directory with 6 updates #3079

wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 29, 2025
edited
Loading

Bumps the dependencies group with 6 updates in the / directory:

Package From To
doctrine/orm 2.20.6 3.5.3
friendsofphp/proxy-manager-lts 1.0.18 1.0.19
nelmio/api-doc-bundle 4.38.2 5.6.5
nelmio/cors-bundle 2.5.0 2.6.0
zircote/swagger-php 4.11.1 5.5.1
doctrine/doctrine-fixtures-bundle 4.2.0 4.3.0

Updates doctrine/orm from 2.20.6 to 3.5.3

Release notes

Sourced from doctrine/orm's releases.

3.5.3

Release Notes for 3.5.3

3.5.x bugfix release (patch)

3.5.3

  • Total issues resolved: 0
  • Total pull requests resolved: 13
  • Total contributors: 5

Bugfixes

Test Suite

CI

Documentation

This release also contains the changes from https://github.com/doctrine/orm/releases/tag/2.20.7

3.5.2

Release Notes for 3.5.2

3.5.x bugfix release (patch)

3.5.2

  • Total issues resolved: 0
  • Total pull requests resolved: 2
  • Total contributors: 2

... (truncated)

Upgrade guide

Sourced from doctrine/orm's upgrade guide.

Note about upgrading: Doctrine uses static and runtime mechanisms to raise awareness about deprecated code.

  • Use of @deprecated docblock that is detected by IDEs (like PHPStorm) or Static Analysis tools (like Psalm, phpstan)
  • Use of our low-overhead runtime deprecation API, details: https://github.com/doctrine/deprecations/

Upgrade to 3.x General Notes

We recommend you upgrade to DBAL 3 first before upgrading to ORM 3. See the DBAL upgrade docs: https://github.com/doctrine/dbal/blob/3.10.x/UPGRADE.md

Rather than doing several major upgrades at once, we recommend you do the following:

  • upgrade to DBAL 3
  • deploy and monitor
  • upgrade to ORM 3
  • deploy and monitor
  • upgrade to DBAL 4
  • deploy and monitor

If you are using Symfony, the recommended minimal Doctrine Bundle version is 2.15 to run with ORM 3.

At this point, we recommend upgrading to PHP 8.4 first and then directly from ORM 2.19 to 3.5 and up so that you can skip the lazy ghost proxy generation and directly start using native lazy objects.

Upgrade to 3.6

Deprecate specifying nullable on columns that end up being used in a primary key

Specifying nullable on join columns that are part of a primary key is deprecated and will be an error in 4.0.

This can happen when using a join column mapping together with an id mapping, or when using a join column mapping or an inverse join column mapping on a many-to-many relationship.

 class User
 {
     #[ORM\Id]
     #[ORM\Column(type: 'integer')]
     private int $id;
 #[ORM\Id]
 #[ORM\ManyToOne(targetEntity: Family::class, inversedBy: 'users')]


#[ORM\JoinColumn(name: 'family_id', referencedColumnName: 'id', nullable: true)]
</tr></table>

... (truncated)

Commits
  • 1220edf Merge pull request #12241 from greg0ire/3.5.x
  • 7e4693d Merge remote-tracking branch 'origin/2.20.x' into 3.5.x
  • 59938ca Merge pull request #12238 from mpdude/fix-collections-deprecation
  • 298dc9b Merge pull request #12183 from mpdude/paginator-confused-result-set-mapping-i...
  • da67f32 Add PHPStan errors to persistence2 baseline file
  • 63635ca Remove PHPStan error suppressions
  • a0d401b Merge pull request #12239 from doctrine/dependabot/github_actions/2.20.x/acti...
  • 6acbadf Merge pull request #12240 from doctrine/dependabot/github_actions/2.20.x/acti...
  • c64dcb4 Bump actions/upload-artifact from 4 to 5
  • 3304290 Bump actions/download-artifact from 5 to 6
  • Additional commits viewable in compare view

Updates friendsofphp/proxy-manager-lts from 1.0.18 to 1.0.19

Release notes

Sourced from friendsofphp/proxy-manager-lts's releases.

v1.0.19

What's Changed

New Contributors

Full Changelog: FriendsOfPHP/proxy-manager-lts@v1.0.18...v1.0.19

Commits

Updates nelmio/api-doc-bundle from 4.38.2 to 5.6.5

Release notes

Sourced from nelmio/api-doc-bundle's releases.

v5.6.5

5.6.5 (2025-10-20)

Bug Fixes

Miscellaneous Chores

  • deps: bump redoc from 2.5.1 to 2.5.2 in /utils (#2574) (2b49d55)
  • deps: bump swagger-ui-dist from 5.29.4 to 5.29.5 in /utils (#2575) (f9fd650)

v5.6.4

5.6.4 (2025-10-17)

Bug Fixes

Miscellaneous Chores

v5.6.3

5.6.3 (2025-10-09)

Miscellaneous Chores

  • deps: bump @​stoplight/elements from 9.0.6 to 9.0.8 in /utils (#2559) (ab71920)
  • deps: bump redoc from 2.5.0 to 2.5.1 in /utils (#2557) (552e1df)
  • deps: bump swagger-ui-dist from 5.29.0 to 5.29.3 in /utils (#2560) (9278d86)

v5.6.2

5.6.2 (2025-09-15)

Miscellaneous Chores

  • deps: bump swagger-ui-dist from 5.28.1 to 5.29.0 in /utils (#2554) (5ad97ac)

v5.6.1

5.6.1 (2025-09-10)

... (truncated)

Changelog

Sourced from nelmio/api-doc-bundle's changelog.

5.6.5 (2025-10-20)

Bug Fixes

Miscellaneous Chores

  • deps: bump redoc from 2.5.1 to 2.5.2 in /utils (#2574) (2b49d55)
  • deps: bump swagger-ui-dist from 5.29.4 to 5.29.5 in /utils (#2575) (f9fd650)

5.6.4 (2025-10-17)

Bug Fixes

Miscellaneous Chores

5.6.3 (2025-10-09)

Miscellaneous Chores

  • deps: bump @​stoplight/elements from 9.0.6 to 9.0.8 in /utils (#2559) (ab71920)
  • deps: bump redoc from 2.5.0 to 2.5.1 in /utils (#2557) (552e1df)
  • deps: bump swagger-ui-dist from 5.29.0 to 5.29.3 in /utils (#2560) (9278d86)

5.6.2 (2025-09-15)

Miscellaneous Chores

  • deps: bump swagger-ui-dist from 5.28.1 to 5.29.0 in /utils (#2554) (5ad97ac)

5.6.1 (2025-09-10)

Bug Fixes

  • ModelRegistry: ensure first registered alternative name is used (#2553) (2f3b3b7)

... (truncated)

Commits

Updates nelmio/cors-bundle from 2.5.0 to 2.6.0

Release notes

Sourced from nelmio/cors-bundle's releases.

2.6.0

What's Changed

Full Changelog: nelmio/NelmioCorsBundle@2.5.0...2.6.0

Commits

Updates zircote/swagger-php from 4.11.1 to 5.5.1

Release notes

Sourced from zircote/swagger-php's releases.

5.5.1

What's Changed

Full Changelog: zircote/swagger-php@5.5.0...5.5.1

5.5.0

What's Changed

Full Changelog: zircote/swagger-php@5.4.2...5.5.0

5.4.2

What's Changed

Full Changelog: zircote/swagger-php@5.4.1...5.4.2

5.4.1

What's Changed

Full Changelog: zircote/swagger-php@5.4.0...5.4.1

5.4.0

What's Changed

New Contributors

Full Changelog: zircote/swagger-php@5.3.2...5.4.0

... (truncated)

Commits
  • a1b6fba Check Context has a reflector and is not nested (#1824)
  • a0768f7 Improve docs and fix broken link (#1825)
  • 436ba3c Add installation details for radebatz/type-info-extras (#1821)
  • c19ec55 Introduce type resolvers (#1801)
  • 7a2817d Add description to enum property which is used in 3.1.x only (#1818)
  • 4f6bac8 Allow array as $type type in mapNativeType() (#1812)
  • 296cdab Mark Analysis::process() as deprecated (#1815)
  • 50d477b Check GeneratorAwareInterface also when setting new Pipeline (#1814)
  • 4d546f9 Support processors that implement GeneratorAwareInterface (#1813)
  • fdbb6f6 Minor docblock cleanup/refactor (#1810)
  • Additional commits viewable in compare view

Updates doctrine/doctrine-fixtures-bundle from 4.2.0 to 4.3.0

Release notes

Sourced from doctrine/doctrine-fixtures-bundle's releases.

4.3.0

Release Notes for 4.3.0

Feature release (minor)

4.3.0

  • Total issues resolved: 0
  • Total pull requests resolved: 1
  • Total contributors: 1

Improvement

Commits

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Chore(deps): Bump the dependencies group across 1 directory with 6 up…
bc9ff6a 
…dates

Bumps the dependencies group with 6 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [doctrine/orm](https://github.com/doctrine/orm) | `2.20.6` | `3.5.3` |
| [friendsofphp/proxy-manager-lts](https://github.com/FriendsOfPHP/proxy-manager-lts) | `1.0.18` | `1.0.19` |
| [nelmio/api-doc-bundle](https://github.com/nelmio/NelmioApiDocBundle) | `4.38.2` | `5.6.5` |
| [nelmio/cors-bundle](https://github.com/nelmio/NelmioCorsBundle) | `2.5.0` | `2.6.0` |
| [zircote/swagger-php](https://github.com/zircote/swagger-php) | `4.11.1` | `5.5.1` |
| [doctrine/doctrine-fixtures-bundle](https://github.com/doctrine/DoctrineFixturesBundle) | `4.2.0` | `4.3.0` |



Updates `doctrine/orm` from 2.20.6 to 3.5.3
- [Release notes](https://github.com/doctrine/orm/releases)
- [Upgrade guide](https://github.com/doctrine/orm/blob/3.5.x/UPGRADE.md)
- [Commits](doctrine/orm@2.20.6...3.5.3)

Updates `friendsofphp/proxy-manager-lts` from 1.0.18 to 1.0.19
- [Release notes](https://github.com/FriendsOfPHP/proxy-manager-lts/releases)
- [Commits](FriendsOfPHP/proxy-manager-lts@v1.0.18...v1.0.19)

Updates `nelmio/api-doc-bundle` from 4.38.2 to 5.6.5
- [Release notes](https://github.com/nelmio/NelmioApiDocBundle/releases)
- [Changelog](https://github.com/nelmio/NelmioApiDocBundle/blob/5.x/CHANGELOG.md)
- [Commits](nelmio/NelmioApiDocBundle@v4.38.2...v5.6.5)

Updates `nelmio/cors-bundle` from 2.5.0 to 2.6.0
- [Release notes](https://github.com/nelmio/NelmioCorsBundle/releases)
- [Changelog](https://github.com/nelmio/NelmioCorsBundle/blob/master/CHANGELOG.md)
- [Commits](nelmio/NelmioCorsBundle@2.5.0...2.6.0)

Updates `zircote/swagger-php` from 4.11.1 to 5.5.1
- [Release notes](https://github.com/zircote/swagger-php/releases)
- [Commits](zircote/swagger-php@4.11.1...5.5.1)

Updates `doctrine/doctrine-fixtures-bundle` from 4.2.0 to 4.3.0
- [Release notes](https://github.com/doctrine/DoctrineFixturesBundle/releases)
- [Commits](doctrine/DoctrineFixturesBundle@4.2.0...4.3.0)

---
updated-dependencies:
- dependency-name: doctrine/orm
  dependency-version: 3.5.3
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: friendsofphp/proxy-manager-lts
  dependency-version: 1.0.19
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: dependencies
- dependency-name: nelmio/api-doc-bundle
  dependency-version: 5.6.5
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: nelmio/cors-bundle
  dependency-version: 2.6.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: dependencies
- dependency-name: zircote/swagger-php
  dependency-version: 5.5.1
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: dependencies
- dependency-name: doctrine/doctrine-fixtures-bundle
  dependency-version: 4.3.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Oct 29, 2025
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Oct 31, 2025

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this Oct 31, 2025
@dependabot dependabot bot deleted the dependabot/composer/dependencies-9b55a49c3d branch October 31, 2025 05:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant