@lando/php - npm Package Compare versions

Comparing version 1.7.0 to 1.7.1

builders/php.js

@@ -164,2 +164,3 @@ 'use strict';
     },
+    scriptsDir: path.resolve(__dirname, '..', 'scripts'),
     sources: [],
@@ -244,3 +245,3 @@ suffix: '5',
         debug('Installing composer version %s', options.composer_version);
-        const commands = [`/helpers/install-composer.sh ${options.composer_version}`];
+        const commands = [`/etc/lando/service/helpers/install-composer.sh ${options.composer_version}`];
         const firstStep = true;
@@ -247,0 +248,0 @@ addBuildStep(commands, options._app, options.name, 'build_internal', firstStep);

CHANGELOG.md

 ## {{ UNRELEASED_VERSION }} - [{{ UNRELEASED_DATE }}]({{ UNRELEASED_LINK }})
 
+## v1.7.1 - [January 15, 2025](https://github.com/lando/php/releases/tag/v1.7.1)
+
+* Improved the `php` service builder to mount a unique scripts directory per service to prevent version conflicts.
+
 ## v1.7.0 - [January 8, 2025](https://github.com/lando/php/releases/tag/v1.7.0)
@@ -4,0 +8,0 @@

netlify.toml

@@ -13,3 +13,3 @@ [build]
   [context.deploy-preview.plugins.inputs]
-    todoPatterns = [ "load", "CHANGELOG.html", "x.com", "twitter.com", "/v/" ]
+    todoPatterns = [ "load", "CHANGELOG.html", "/v/", "x.com", "twitter.com", "www.php.net" ]
     skipPatterns = [ ".rss", ".gif", ".jpg" ]
@@ -16,0 +16,0 @@ checkExternal = true

package.json

 {
   "name": "@lando/php",
   "description": "A Lando plugin that provides a tight integration with PHP.",
-  "version": "1.7.0",
+  "version": "1.7.1",
   "author": "Mike Pirog @pirog",
@@ -69,7 +69,7 @@ "license": "GPL-3.0",
   "dist": {
-    "integrity": "sha512-SMAjegMZXUtiSQOHdsdbjnrIFRX9DkO6/7gWlEs5q+KRXXzjfHPhwMtddd5225jbGSnDlKQUWKBlHaDWHRDaAA==",
-    "shasum": "222014d582a6d1377d0da500571651149cb1e048",
-    "filename": "lando-php-1.7.0.tgz",
-    "unpackedSize": 3128242
+    "integrity": "sha512-GF7bMuFPLQoPPb1ODyJ2aCLbASR6PLmM9TLJy+5v+2xViS6elMJLe20D51SsFB4K8vzo4o6PIO7WboE5PRn8cg==",
+    "shasum": "3e52a825d6d81d9117e9ce6243e28a1d16c43fea",
+    "filename": "lando-php-1.7.1.tgz",
+    "unpackedSize": 3128531
   }
 }

New alerts

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Fixed alerts

Uses eval

Supply chain risk

Package uses dynamic code execution (e.g., eval()), which is a dangerous practice. This can prevent the code from running in certain environments and increases the risk that the code may contain exploits or malicious behavior.

Found 1 instance in 1 package

Environment variable access

Supply chain risk

Package accesses environment variables, which may be a sign of credential stuffing or data theft.

Found 2 instances in 1 package

Long strings

Supply chain risk

Contains long string literals, which may be a sign of obfuscated or packed code.

Found 1 instance in 1 package

URL strings

Supply chain risk

Package contains fragments of external URLs or IP addresses, which the package may be accessing at runtime.

Found 1 instance in 1 package

Improved metrics

Total package byte prevSize

3128790

0.01%

Lines of code

84319

0

No dependency changes