fix(deps): update symfony packages by renovate[bot] · Pull Request #411 · jeboehm/mailserver-admin

renovate · 2026-05-03T14:08:55Z

This PR contains the following updates:

Package	Change	Age	Confidence
easycorp/easyadmin-bundle	`v5.0.5` → `v5.0.7`
symfony/console (source)	`v8.0.8` → `v8.0.9`
symfony/css-selector (source)	`v8.0.8` → `v8.0.9`
symfony/dotenv (source)	`v8.0.8` → `v8.0.9`
symfony/form (source)	`8.0.8` → `8.0.9`
symfony/framework-bundle (source)	`v8.0.8` → `v8.0.9`
symfony/http-client (source)	`v8.0.8` → `v8.0.9`
symfony/serializer (source)	`v8.0.8` → `v8.0.9`
symfony/validator (source)	`v8.0.8` → `v8.0.9`
symfony/web-profiler-bundle (source)	`v8.0.8` → `v8.0.9`

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

Release Notes

EasyCorp/EasyAdminBundle (easycorp/easyadmin-bundle)

`v5.0.7`: 5.0.7

Compare Source

New features

[ae6ff6b] Add login_form_footer block to the login page template (@lacatoire)
[a2aa224] Add ButtonVariant::Info (@lacatoire)

Bug fixes

[ba934ab] Fix TextEditorField layout breaking under strict CSP (@lacatoire)
[f74c134] Allow buttons to grow and wrap with long or multi-line content (@lacatoire)
[968fe87] Prevent ImageField from overwriting existing files (@lacatoire)
[f71eee4] Fix filter to use translated labels for enums implementing TranslatableInterface (@lacatoire)
[080ae90] Fix the disabling of text editor fields (@javiereguiluz)
[29bf7ec] Prevent TextEditor modal clicks from triggering row action redirect (@lacatoire)
[5e00ba3] Add choice_label support to CrudAutocompleteType (@Amoifr)
[0d158f0] Apply DefaultColumns to ChoiceField regardless of widget type (@lacatoire)
[4e39c0d] Fix filter label translation when field is hidden via hideOnIndex (@Amoifr)

Misc fixes

[846a2f3] Add regression test for CollectionField::renderExpanded() on nested CRUD forms (@lacatoire)
[538ff87] Improve the docs about field configurators (@lacatoire)
[b95f290] Fix configuration on documentation file (@maxhelias)

`v5.0.6`: 5.0.6

Compare Source

This release mostly focuses on fixing security issues identified during an AI-assisted security audit.

New features

[3f7f123] Increase constraint version of symfony/ux-twig-component to ^3.0 (@Kocal)

Bug fixes

[4c36ff8] Fix RepeatedType fields not inheriting Bootstrap column classes (@Mozoou)
[1a0153c] Translate header in ItemGroup (@Ishadijcks)
[66fe618] Fix a deprecation related to Url constraint (@javiereguiluz)
[13aa462] Use formattedValue consistently in UrlField on index and detail pages (@lacatoire)
[a34750d] Preserve text selection when clicking datagrid rows (@lacatoire)
[ce16587] Fix passing single constraints to image and file fields (@javiereguiluz)
[0af674d] Fix file field with remote storage (@javiereguiluz)

Security fixes

[d31b538] Check delete action CSRF unconditionally (@javiereguiluz)
[63e46c6] Add more security protection to autocomplete action (@javiereguiluz)
[dad9934] Improve the security of the Url field (@javiereguiluz)
[94e9d52] Improve the security of the Color field (@javiereguiluz)
[5641b29] Improve the security of the Email and Telephone fields (@javiereguiluz)
[f231f15] Improve the security of the File upload filed (@javiereguiluz)
[f278004] Add authorization checks to the renderFilters() action (@javiereguiluz)
[f0b7298] Improve security of batchDelete() action (@javiereguiluz)

symfony/console (symfony/console)

`v8.0.9`

Compare Source

Changelog (symfony/console@v8.0.8...v8.0.9)

bug #63859 Fix shell completion when SHELL_VERBOSITY=-1 (@nicolas-grekas)

symfony/css-selector (symfony/css-selector)

`v8.0.9`

Compare Source

Changelog (symfony/css-selector@v8.0.6...v8.0.9)

bug #63923 Fix :is() and :where() combining conditions with parent selector (@lacatoire)

symfony/dotenv (symfony/dotenv)

`v8.0.9`

Compare Source

Changelog (symfony/dotenv@v8.0.8...v8.0.9)

bug #64020 Strip NUL byte placeholder from values passed to putenv() (@alexandre-daubois)
bug #63955 Fix variable corruption when loading env more than once (@nicolas-grekas)
bug #63894 Fix self-referencing variable resolution with suffix/prefix (@Amoifr)

symfony/form (symfony/form)

`v8.0.9`

Compare Source

Changelog (symfony/form@v8.0.8...v8.0.9)

bug #64043 Preserve collection children added by PRE_SET_DATA listeners (@dargor980)

symfony/framework-bundle (symfony/framework-bundle)

`v8.0.9`

Compare Source

Changelog (symfony/framework-bundle@v8.0.8...v8.0.9)

bug #64023 Fix mailer package check for bridges whose composer name does not match the service id (@lacatoire)
bug #64044 Apply tagged MIME type guessers in File::getMimeType() (@ousamabenyounes)
bug #63991 Strip --no-fill marker from every translation domain (@ousamabenyounes)
bug #63889 Auto-inject ObjectMapper into ObjectMapperAwareInterface transforms (@Amoifr)

symfony/http-client (symfony/http-client)

`v8.0.9`

Compare Source

Changelog (symfony/http-client@v8.0.8...v8.0.9)

bug #64046 Don't share CURL_LOCK_DATA_CONNECT to honor max_host_connections (@ousamabenyounes)

symfony/serializer (symfony/serializer)

`v8.0.9`

Compare Source

Changelog (symfony/serializer@v8.0.8...v8.0.9)

bug #64067 Move type-mismatch and uninitialized-property handling into concrete normalizers (@ousamabenyounes)
bug #63979 Capture constructor TypeError when collecting denormalization errors (@lacatoire)
bug #63974 Make BackedEnumNormalizer unconditionally return null on invalid value if allow_invalid_values is set (@MatTheCat)
bug #63883 Fix getAllowedAttributes() when groups contain wildcard '*' (@takashiraki)

symfony/validator (symfony/validator)

`v8.0.9`

Compare Source

Changelog (symfony/validator@v8.0.7...v8.0.9)

bug #64036 fix mapping properties using property hooks (@mrossard)
data #63849 Remove needs-review flag for Afrikaans (af) (@payene)

symfony/web-profiler-bundle (symfony/web-profiler-bundle)

`v8.0.9`

Compare Source

Changelog (symfony/web-profiler-bundle@v8.0.8...v8.0.9)

bug #63930 Fix toolbar toggle button accessibility (@Nitram1123)

Configuration

📅 Schedule: (UTC)

Branch creation
- Only on Sunday and Saturday (* * * * 0,6)
Automerge
- At any time (no schedule defined)

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

renovate · 2026-05-03T14:08:57Z

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻ Renovate will retry this branch, including artifacts, only when one of the following happens:

any of the package files in this branch needs updating, or
the branch becomes conflicted, or
you click the rebase/retry checkbox if found above, or
you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: composer.lock

Command failed: composer update easycorp/easyadmin-bundle:5.0.7 symfony/console:8.0.9 symfony/css-selector:8.0.9 symfony/dotenv:8.0.9 symfony/form:8.0.9 symfony/framework-bundle:8.0.9 symfony/http-client:8.0.9 symfony/serializer:8.0.9 symfony/validator:8.0.9 symfony/web-profiler-bundle:8.0.9 --with-all-dependencies --ignore-platform-req=ext-* --ignore-platform-req=lib-* --no-ansi --no-interaction --no-scripts --no-autoloader --no-plugins --minimal-changes
Loading composer repositories with package information
Updating dependencies
Your requirements could not be resolved to an installable set of packages.

  Problem 1
    - Root composer.json requires symfony/form 8.0.9 -> satisfiable by symfony/form[v8.0.9].
    - Root composer.json requires symfony/serializer v8.0.9 -> satisfiable by symfony/serializer[v8.0.9].
    - symfony/form v8.0.9 requires symfony/property-access ^7.4|^8.0 -> satisfiable by symfony/property-access[v7.4.0, v7.4.3, v7.4.4, v7.4.8, v8.0.0, v8.0.3, v8.0.4, v8.0.8].
    - symfony/serializer v8.0.9 conflicts with symfony/property-access v8.0.8.
    - symfony/serializer v8.0.9 conflicts with symfony/property-access v8.0.3.
    - symfony/serializer v8.0.9 conflicts with symfony/property-access v8.0.0.
    - symfony/serializer v8.0.9 conflicts with symfony/property-access v7.4.8.
    - symfony/serializer v8.0.9 conflicts with symfony/property-access v7.4.3.
    - symfony/serializer v8.0.9 conflicts with symfony/property-access v7.4.0.

renovate Bot force-pushed the renovate/symfony branch 3 times, most recently from b44f250 to c9386ca Compare May 4, 2026 01:57

fix(deps): update symfony packages

4b0b1e6

renovate Bot force-pushed the renovate/symfony branch from c9386ca to 4b0b1e6 Compare May 4, 2026 05:11

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

fix(deps): update symfony packages#411

fix(deps): update symfony packages#411
renovate[bot] wants to merge 1 commit intomainfrom
renovate/symfony

renovate Bot commented May 3, 2026 •

edited

Loading

Uh oh!

renovate Bot commented May 3, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

renovate Bot commented May 3, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v5.0.7: 5.0.7

New features

Bug fixes

Misc fixes

v5.0.6: 5.0.6

New features

Bug fixes

Security fixes

Configuration

Uh oh!

renovate Bot commented May 3, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

⚠️ Artifact update problem

File name: composer.lock

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

renovate Bot commented May 3, 2026 •

edited

Loading

`v5.0.7`: 5.0.7

`v5.0.6`: 5.0.6

renovate Bot commented May 3, 2026 •

edited

Loading