Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

symfony/framework-bundle

Ecosystem:
packagist
Package URL:
pkg:composer/symfony/framework-bundle
Total PRs:
282 Dependabot PRs
Latest PR:
10 days ago
Unique Repositories:
81 repositories
Unique Repos (30 days):
7 repositories
Security Advisories
Code injection in the way Symfony implements translation caching in FrameworkBundle
GHSA-wfv7-5x33-v22h CVE-2014-4931 HIGH published over 1 year ago • updated 18 days ago
When investigating issue [#11093](https://github.com/symfony/symfony/issues/11093), [Jeremy Derussé](https://connect.sensiolabs.com/profile/jderuss...
Symfony Cross-site Scripting (XSS) vulnerability
GHSA-g996-q5r8-w7g2 CVE-2019-10909 MODERATE published about 6 years ago • updated 28 minutes ago
In Symfony before 2.7.51, 2.8.x before 2.8.50, 3.x before 3.4.26, 4.x before 4.1.12, and 4.2.x before 4.2.7, validation messages are not escaped, w...
CSRF token missing in Symfony
GHSA-vvmr-8829-6whx CVE-2022-23601 HIGH published almost 4 years ago • updated 16 days ago
Description ----------- The Symfony form component provides a CSRF protection mechanism by using a random token injected in the form and using the...
Recent PRs (filtered by: Open )
RSS Feed Clear filter
chore: composer(deps): bump the all group across 1 directory with 38 updates

pfadfinden/event-pager #121

7.2.5 → 7.2.7 Patch PR
Open 6 months ago
pfadfinden
Bump the minor-version-updates group across 1 directory with 16 updates

wmde/fundraising-application #3106

7.2.5 → 7.3.0 Minor PR
Open 6 months ago
wmde
Bump symfony/framework-bundle from 7.2.4 to 7.3.0

wikimedia/ws-export #543

7.2.4 → 7.3.0 Minor PR
Open 6 months ago
wikimedia
Bump symfony/framework-bundle from 7.2.5 to 7.3.0

danaketh/exercise_vending-machine #232

7.2.5 → 7.3.0 Minor PR
Open 6 months ago
danaketh
build(deps): bump the symfony group with 12 updates

ilios/ilios #6203

7.2.5 → 7.2.7 Patch PR
Open 6 months ago 1 comment
ilios
feat(deps): bump the all-deps group across 1 directory with 7 updates

VilnaCRM-Org/core-service #33

7.1.11 → 7.2.5 Minor PR
Open 7 months ago 3 comments
VilnaCRM-Org
red - composer(deps): bump the symfony_prod group across 1 directory with 4 updates

zerai/sycton #1029

6.4.20 → 6.4.21 Patch PR
Open 7 months ago 1 comment
zerai
chore(deps): bump the symfony_prod group in /api with 7 updates

zerai/s-eco #50

6.4.20 → 6.4.21 Patch PR
Open 7 months ago 1 comment
zerai
[PHP]: Update symfony/framework-bundle requirement from ~5.4 to ~7.2 in /vendor-bin/phpunit

Aerendir/bundle-users #976

~5.4 → ~7.2
Open 11 months ago 1 comment
Aerendir
Package Details
Name: symfony/framework-bundle
Ecosystem: packagist
PURL Type: composer
Package URL: pkg:composer/symfony/framework-bundle
JSON API: View JSON
Security Advisories

3

Active advisories
HIGH 2
MODERATE 1
View All composer Advisories
Package Information
Description:

Provides a tight integration between Symfony components and the Symfony full-stack framework

Repository: https://github.com/symfony/framework-bundle
Homepage: https://symfony.com
Latest Release: v7.3.0
6 months ago
Dependent Repos: 60,778
Dependent Packages: 8,806
Downloads: 194,495,154
Ranking: Top 0.0367% by dependent repos Top 0.0428% by downloads Top 0.0027% by dependent pkgs
PR Status
Open 109 (38.7%)
Merged 80 (28.4%)
Closed 73 (25.9%)
PR Types
Minor 61 (21.6%)
Major 1 (0.4%)
Patch 198 (70.2%)