Skip to content

Chore(deps-dev): Bump guzzlehttp/guzzle from 7.12.1 to 7.12.3 in /tests/integration#8136

Merged
github-actions[bot] merged 1 commit into
mainfrom
dependabot/composer/tests/integration/guzzlehttp/guzzle-7.12.3
Jul 4, 2026
Merged

Chore(deps-dev): Bump guzzlehttp/guzzle from 7.12.1 to 7.12.3 in /tests/integration#8136
github-actions[bot] merged 1 commit into
mainfrom
dependabot/composer/tests/integration/guzzlehttp/guzzle-7.12.3

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 4, 2026

Copy link
Copy Markdown
Contributor

Bumps guzzlehttp/guzzle from 7.12.1 to 7.12.3.

Release notes

Sourced from guzzlehttp/guzzle's releases.

7.12.3

Changed

  • Adjusted guzzlehttp/psr7 version constraint to ^2.12.3

Security

7.12.2

Fixed

  • Clamp out-of-range Max-Age so a very large value no longer overflows to an already-expired timestamp
  • Use strict comparison in CookieJar conflict resolution so distinct numeric-string names don't overwrite
  • Store a cookie whose Domain has a trailing dot on the origin host instead of silently discarding it
  • Fix StreamHandler hard-failing on bracketed IPv6 literal hosts when force_ip_resolve is set
  • Use strict cookie Path comparison so CookieJar::clear() with a numeric path keeps a distinct-path cookie
  • Fixed cookie handling for falsey Domain, Max-Age, path, and name values
  • Fixed decode_content handling for falsey string values
  • Fixed deprecated request option values reaching built-in handlers before normalization
Changelog

Sourced from guzzlehttp/guzzle's changelog.

7.12.3 - 2026-06-23

Changed

  • Adjusted guzzlehttp/psr7 version constraint to ^2.12.3

Security

7.12.2 - 2026-06-23

Fixed

  • Clamp out-of-range Max-Age so a very large value no longer overflows to an already-expired timestamp
  • Use strict comparison in CookieJar conflict resolution so distinct numeric-string names don't overwrite
  • Store a cookie whose Domain has a trailing dot on the origin host instead of silently discarding it
  • Fix StreamHandler hard-failing on bracketed IPv6 literal hosts when force_ip_resolve is set
  • Use strict cookie Path comparison so CookieJar::clear() with a numeric path keeps a distinct-path cookie
  • Fixed cookie handling for falsey Domain, Max-Age, path, and name values
  • Fixed decode_content handling for falsey string values
  • Fixed deprecated request option values reaching built-in handlers before normalization
Commits

@dependabot dependabot Bot added dependencies php Pull requests that update Php code labels Jul 4, 2026
@dependabot dependabot Bot added the php Pull requests that update Php code label Jul 4, 2026
@github-actions github-actions Bot enabled auto-merge July 4, 2026 03:15
Bumps [guzzlehttp/guzzle](https://github.com/guzzle/guzzle) from 7.12.1 to 7.12.3.
- [Release notes](https://github.com/guzzle/guzzle/releases)
- [Changelog](https://github.com/guzzle/guzzle/blob/7.13/CHANGELOG.md)
- [Commits](guzzle/guzzle@7.12.1...7.12.3)

---
updated-dependencies:
- dependency-name: guzzlehttp/guzzle
  dependency-version: 7.12.3
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/composer/tests/integration/guzzlehttp/guzzle-7.12.3 branch from 4e86a4b to db9d0ff Compare July 4, 2026 04:30
@github-actions github-actions Bot merged commit ebacf31 into main Jul 4, 2026
37 of 41 checks passed
@github-actions github-actions Bot deleted the dependabot/composer/tests/integration/guzzlehttp/guzzle-7.12.3 branch July 4, 2026 04:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies php Pull requests that update Php code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants