Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update dompdf/dompdf requirement from ^2.0 to ^2.0 || ^3.0 #1

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Jun 1, 2024

Updates the requirements on dompdf/dompdf to permit the latest version.

Release notes

Sourced from dompdf/dompdf's releases.

Dompdf 3.0.0

Release Highlights

  • Adds support for CSS variables (custom properties)
  • Adds support for CSS math functions (calc, max, round, etc.)
  • Updates the font matching logic to select the appropriate character-supporting font from the styled font families

Additional Changes

  • Improves stylesheet handling, including
    • enhanced regular expressions used during stylesheet parsing
    • enhanced media query handling that
      • supports media queries with more than one condition
      • expands logical operators support (not, or)
      • expands media query logic for at-import rules
    • improved value parsing related to case sensitivity
    • improved CSS function parsing and handling
  • Improves table border rendering
  • Improves automatic counter reset
  • Improves compatibility with PDFLib version 10
  • Improves security through
    • new "allowedRemoteHosts" option to restrict which remote hosts can be requested
    • new "artifactPathValidation" option to provide a mechanism for validating artifact paths (log file, temp directories, etc.)
    • SVG file reference recursion
  • Adds support for rendering unknown input element types
  • Fixes IMagick extension temporary directory usage
  • Fixes transparency after transform when using the Cpdf backend

The full list of new features and addressed issues can be found in the release milestone. View all changes since the previous release in the commit history.


We would like to extend our gratitude to the community members who helped make this release possible.

Requirements

Dompdf 3.0.x requires the following:

  • PHP 7.1 or greater
    • MBString
    • GD (for image processing)
  • masterminds/html5
  • dompdf/php-font-lib
  • dompdf/php-svg-lib

For full requirements and recommendations see the requirements page on the wiki.

Download Instructions

The dompdf team recommends that you use Composer for easier dependency management.

If you're not yet using Composer you can download a packaged release of dompdf which includes all the files you need to use the library. Click the link labeled "dompdf_3-0-0.zip" for the packaged release. The download options labeled "Source code" are auto-generated by github and do not include all the dependencies.

Commits
  • fbc7c5e Bump version to 3.0.0
  • 1fa8696 Update FontLib, SvgLib requirements
  • e4b4b53 Capture deprecation notices during unit testing
  • 12834cc Avoid deprecation notice when validating null artifact paths
  • 1cbf771 Address GD compatibility issue when using PHP < 8.0.0
  • e1899a4 FIX artifact path validation
  • 3e665ec Support artifact path validation
  • 0ed161b Increase SvgLib dependency to 0.5.2
  • a30da03 Improve CSS variable inheritance
  • 9c6228e Add multi-document parsing note to the README
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Updates the requirements on [dompdf/dompdf](https://github.com/dompdf/dompdf) to permit the latest version.
- [Release notes](https://github.com/dompdf/dompdf/releases)
- [Commits](dompdf/dompdf@v2.0.0...v3.0.0)

---
updated-dependencies:
- dependency-name: dompdf/dompdf
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jun 1, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants