Update dependency twig/twig to v3.14.2
This MR contains the following updates:
Package | Type | Update | Change |
---|---|---|---|
twig/twig (source) | require | patch |
3.14.0 -> 3.14.2
|
Release Notes
twigphp/Twig (twig/twig)
v3.14.2
- Fix an infinite recursion in the sandbox code
v3.14.1
- [BC BREAK] Fix a security issue in the sandbox mode allowing an attacker to call attributes on Array-like objects They are now checked via the property policy
- Fix a security issue in the sandbox mode allowing an attacker to be able to call
toString()
under some circumstances on an object even if the__toString()
method is not allowed by the security policy
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.