Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Move security advisory loading to repositories #10898

Merged
merged 2 commits into from Jun 28, 2022
Merged

Move security advisory loading to repositories #10898

merged 2 commits into from Jun 28, 2022

Conversation

Seldaek
Copy link
Member

@Seldaek Seldaek commented Jun 24, 2022
edited

  • Allows other repos to provide security advisories
  • Reduces load on packagist.org for summary advisory reports (which are done by default on update/install, and would have caused insane load on the packagist API otherwise)
  • Disable automatic audit at the end of install step to keep things fast, switch --no-audit to an opt-in --audit flag

cc @GuySartorelli just FYI

@Seldaek
Move security advisory loading to repositories, allows others to prov…
8c9f82d 
…ider them and reduces load on packagist.org for summary advisory reports
@Seldaek Seldaek added this to the 2.4 milestone Jun 24, 2022
@Seldaek
Disable automatic audit at the end of install step to keep things fas…
0196690 
…t, switch --no-audit to an opt-in --audit flag
@Seldaek Seldaek merged commit f9db69a into composer:main Jun 28, 2022
@Seldaek Seldaek deleted the meta_advisories branch June 28, 2022 18:31
@barryvdh barryvdh mentioned this pull request Jul 23, 2022
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Refactoring
Projects
None yet
Milestone
2.4
Development

Successfully merging this pull request may close these issues.

None yet
1 participant
@Seldaek