Data

Tools

Indexes

Applications

Experiments

Dependabot

An open index of dependabot pull requests across open source projects.

symfony/http-kernel

Ecosystem:
packagist
Package URL:
pkg:composer/symfony/http-kernel
Total PRs:
230 Dependabot PRs
Latest PR:
13 days ago
Unique Repositories:
126 repositories
Unique Repos (30 days):
12 repositories
Security Advisories
Symfony Http-Kernel has non-constant time comparison in UriSigner
GHSA-q8hg-pf8v-cxrv CVE-2019-18887 HIGH published almost 4 years ago • updated 3 days ago
When checking the signature of an URI (an ESI fragment URL for instance), the URISigner did not used a constant time string comparison function, re...
Webcache Poisoning in symfony/http-kernel
GHSA-q3j3-w37x-hq2q CVE-2021-41267 MODERATE published over 4 years ago • updated 3 days ago
Description ----------- When a Symfony application is running behind a proxy or a load-balancer, you can tell Symfony to look for the `X-Forwarded...
Symfony Vulnerable to PHP Eval Injection
GHSA-5c58-w9xc-qcj9 CVE-2015-2308 MODERATE published almost 4 years ago • updated about 6 hours ago
Applications with ESI support (and SSI support as of Symfony 2.6) enabled and using the Symfony built-in reverse proxy (the `Symfony\Component\Http...
RCE in Symfony
GHSA-754h-5r27-7x3r CVE-2020-15094 HIGH published over 5 years ago • updated about 6 hours ago
Description ----------- The `CachingHttpClient` class from the HttpClient Symfony component relies on the `HttpCache` class to handle requests. `H...
Symfony storing cookie headers in HttpCache
GHSA-h7vf-5wrv-9fhv CVE-2022-24894 MODERATE published about 3 years ago • updated about 8 hours ago
Description ----------- The Symfony HTTP cache system acts as a reverse proxy: it caches HTTP responses (including headers) and returns them to cl...
View all 7 advisories
Recent PRs
RSS Feed
Update symfony/http-kernel requirement from ^6.4 || ^7.4 to ^8.0.5

kununu/testing-bundle #88

^6.4 || ^7.4 → ^8.0.5 Patch PR
Open 13 days ago 1 comment
kununu
chore(deps): bump the symfony group with 10 updates

kevinwsbr/openemr #3

6.4.30 → 6.4.33 Patch PR
Open 20 days ago 1 comment
kevinwsbr
composer(deps): bump the symfony-core group with 7 updates

PhilDaiguille/symfony-template #69

8.0.4 → 8.0.5 Patch PR
Closed 24 days ago 2 comments
PhilDaiguille
chore(deps): bump the php-dependencies group with 26 updates

SpiriitLabs/JiraServiceDesk #161

7.4.4 → 7.4.5 Patch PR
Closed 24 days ago 1 comment
SpiriitLabs
build(deps): bump symfony/http-kernel from 8.0.4 to 8.0.5

thorsten/phpMyFAQ #3920

8.0.4 → 8.0.5 Patch PR
Open 29 days ago 1 comment
thorsten
Bump symfony/http-kernel from 7.4.4 to 7.4.5

omnicolor/commlink #2893

7.4.4 → 7.4.5 Patch PR
Closed 30 days ago 2 comments
omnicolor
chore(deps): bump the symfony group with 10 updates

maniastevenjener/EMR #3

6.4.30 → 6.4.32 Patch PR
Open about 1 month ago 1 comment
maniastevenjener
Bump the composer group across 1 directory with 10 updates

Adgarcia01/casino-website #1

4.1.8 → 4.4.51 Minor PR
Open about 1 month ago 2 comments
Adgarcia01
Bump the symfony group with 39 updates

kdgyimah/be #8

8.0.3 → 8.0.4 Patch PR
Closed about 1 month ago 1 comment
kdgyimah
chore(deps): bump the symfony-framework group with 38 updates

parti-renaissance/espace-adherent #12848

7.4.3 → 7.4.4 Patch PR
Closed about 1 month ago 1 comment
parti-renaissance
chore(deps): bump the symfony group across 1 directory with 12 updates

saketh-bandi/Relay_Heidi_Hackathon #32

6.4.27 → 6.4.32 Patch PR
Open about 1 month ago 1 comment
saketh-bandi
chore(deps): bump the symfony group with 9 updates

openemr/openemr #10393

6.4.31 → 6.4.32 Patch PR
Closed about 1 month ago 1 comment
openemr
Bump the composer group across 1 directory with 10 updates

Unity-Billal-mesloub/itmgirlsbackoffice #3

5.2.7 → 5.4.50 Minor PR
Open about 1 month ago 1 comment
Unity-Billal-mesloub
Bump symfony/http-kernel from 5.4.12 to 5.4.50

akeneo/pim-community-dev #20596

5.4.12 → 5.4.50 Patch PR
Closed about 1 month ago 1 comment
akeneo
chore(deps): bump the symfony group with 7 updates

miguelix90/farmakit #1

6.4.30 → 6.4.31 Patch PR
Open about 2 months ago 1 comment
miguelix90
composer(deps): bump the symfony-core group with 12 updates

PhilDaiguille/symfony-template #61

8.0.2 → 8.0.3 Patch PR
Closed about 2 months ago 2 comments
PhilDaiguille
chore(deps): bump the php-dependencies group with 45 updates

SpiriitLabs/JiraServiceDesk #145

7.4.0 → 7.4.2 Patch PR
Open 3 months ago 1 comment
SpiriitLabs
chore(deps): bump the symfony group across 1 directory with 9 updates

saketh-bandi/Relay_Heidi_Hackathon #17

6.4.27 → 6.4.30 Patch PR
Closed 3 months ago 2 comments
saketh-bandi
Bump the symfony group with 5 updates

glpi-project/glpi #22144

6.4.27 → 6.4.29 Patch PR
Closed 3 months ago 2 comments
glpi-project
chore(deps): bump the symfony group with 4 updates

saketh-bandi/Relay_Heidi_Hackathon #10

6.4.27 → 6.4.29 Patch PR
Closed 3 months ago 2 comments
saketh-bandi
Bump symfony/http-kernel from 3.2.7 to 3.4.49

jonyen/bible-translation #9

3.2.7 → 3.4.49 Minor PR
Closed 4 months ago 1 comment
jonyen
Bump the composer group across 1 directory with 9 updates

koushikch7/magento2 #1

5.4.10 → 6.0.20 Major PR
Closed 4 months ago 1 comment
koushikch7
Bump the composer group across 1 directory with 11 updates

devsdocs/OLAINDEX #1

5.2.2 → 5.4.48 Minor PR
Open 4 months ago 1 comment
devsdocs
chore(deps): bump symfony/http-kernel from 7.3.6 to 7.3.7 in /app

DevSkillsHQ/backend-boilerplate-php-laravel #569

7.3.6 → 7.3.7 Patch PR
Closed 4 months ago 1 comment
DevSkillsHQ
composer(deps): bump the symfony-core group with 12 updates

PhilDaiguille/symfony-template #37

7.3.5 → 7.3.6 Patch PR
Closed 4 months ago 2 comments
PhilDaiguille
(chore): Bump the composer group with 8 updates

yardinternet/wp-user-roles #72

6.4.27 → 6.4.28 Patch PR
Closed 4 months ago 5 comments
yardinternet
composer(deps): bump the patch-updates group with 21 updates

RumenDamyanov/php-seo #19

7.3.4 → 7.3.6 Patch PR
Open 4 months ago 1 comment
RumenDamyanov
chore(deps): bump the symfony group with 4 updates

sreehari-dev-codes/openEmr #1

6.4.27 → 6.4.28 Patch PR
Closed 4 months ago 3 comments
sreehari-dev-codes
Bump symfony/http-kernel from 6.4.27 to 6.4.28 in /web/landing

flow-php/flow #1964

6.4.27 → 6.4.28 Patch PR
Closed 4 months ago 1 comment
flow-php
Bump the symfony group with 6 updates

glpi-project/glpi #21742

6.4.26 → 6.4.27 Patch PR
Closed 4 months ago 1 comment
glpi-project
Bump the symfony group with 6 updates

ideacom-dev/ASISTE #5

6.4.26 → 6.4.27 Patch PR
Closed 4 months ago 1 comment
ideacom-dev
chore(deps): bump symfony/http-kernel from 7.3.4 to 7.3.5 in /app

DevSkillsHQ/backend-boilerplate-php-laravel #553

7.3.4 → 7.3.5 Patch PR
Closed 4 months ago 2 comments
DevSkillsHQ
Bump symfony/http-kernel from 6.4.26 to 6.4.27 in /web/landing

flow-php/flow #1934

6.4.26 → 6.4.27 Patch PR
Closed 4 months ago 1 comment
flow-php
chore(deps): bump symfony/http-kernel from 7.3.4 to 7.3.5 in /app-backend

DevSkillsHQ/fullstack-boilerplate-php-laravel-vue #609

7.3.4 → 7.3.5 Patch PR
Open 4 months ago 1 comment
DevSkillsHQ
chore(deps): bump symfony/http-kernel from 7.3.3 to 7.3.4 in /app-backend

DevSkillsHQ/fullstack-boilerplate-php-react-nextjs #614

7.3.3 → 7.3.4 Patch PR
Open 4 months ago 1 comment
DevSkillsHQ
Bump symfony/http-kernel from 6.4.25 to 6.4.26 in /web/landing

regues-796/flow #15

6.4.25 → 6.4.26 Patch PR
Merged 5 months ago
regues-796
Bump symfony/http-kernel from 7.3.3 to 7.3.4

liip/open-swiss-buildings-api #265

7.3.3 → 7.3.4 Patch PR
Open 5 months ago
liip
Bump symfony/http-kernel from 7.3.3 to 7.3.4

GemberPHP/event-sourcing-symfony-bundle #29

7.3.3 → 7.3.4 Patch PR
Open 5 months ago
GemberPHP
Bump symfony/http-kernel from 7.3.3 to 7.3.4

GemberPHP/example-event-sourcing-dcb #69

7.3.3 → 7.3.4 Patch PR
Open 5 months ago
GemberPHP
Bump the symfony group with 12 updates

juanve141277/glpi1 #12

6.4.25 → 6.4.26 Patch PR
Open 5 months ago
juanve141277
composer(deps): bump the symfony-core group with 15 updates

PhilDaiguille/symfony-template #27

7.3.3 → 7.3.4 Patch PR
Merged 5 months ago 1 comment
PhilDaiguille
iam - composer(deps): bump the symfony_prod group in /iam with 6 updates

zerai/sycton #1081

6.4.25 → 6.4.26 Patch PR
Open 5 months ago
zerai
(chore): Bump the composer group with 15 updates

yardinternet/wp-user-roles #66

6.4.25 → 6.4.26 Patch PR
Open 5 months ago 3 comments
yardinternet
Bump symfony/http-kernel from 7.3.3 to 7.3.4

jerowork/example-application-graphql-attribute-schema #77

7.3.3 → 7.3.4 Patch PR
Open 5 months ago
jerowork
Bump symfony/http-kernel from 7.3.3 to 7.3.4

omnicolor/commlink #2625

7.3.3 → 7.3.4 Patch PR
Merged 5 months ago
omnicolor
chore(deps): bump symfony/http-kernel from 7.3.2 to 7.3.4 in /app

DevSkillsHQ/backend-boilerplate-php-laravel #528

7.3.2 → 7.3.4 Patch PR
Open 5 months ago 2 comments
DevSkillsHQ
composer(deps): bump symfony/http-kernel from 7.3.3 to 7.3.4

cyberspectrum/pdflatex-bundle #32

7.3.3 → 7.3.4 Patch PR
Open 5 months ago
cyberspectrum
Bump symfony/http-kernel from 7.3.3 to 7.3.4

indyjonesnl/cloud-provider-cidr #51

7.3.3 → 7.3.4 Patch PR
Merged 5 months ago
indyjonesnl
composer(deps): bump symfony/http-kernel from 7.3.3 to 7.3.4

ergebnis/factory-bot-example #1815

7.3.3 → 7.3.4 Patch PR
Closed 5 months ago 1 comment
ergebnis
Bump symfony/http-kernel from 6.4.25 to 6.4.26

zoiosilva/site #2295

6.4.25 → 6.4.26 Patch PR
Merged 5 months ago
zoiosilva
Package Details
Name: symfony/http-kernel
Ecosystem: packagist
PURL Type: composer
Package URL: pkg:composer/symfony/http-kernel
JSON API: View JSON
Security Advisories

7

Active advisories
HIGH 3
MODERATE 4
View All composer Advisories
Package Information
Description:

Provides a structured process for converting a Request into a Response

Repository: https://github.com/symfony/http-kernel
Homepage: https://symfony.com
Latest Release: v7.2.6
10 months ago
Dependent Repos: 534,064
Dependent Packages: 5,492
Downloads: 696,099,444
Ranking: Top 0.0054% by dependent repos Top 0.0086% by downloads Top 0.0061% by dependent pkgs
PR Status
Open 68 (29.6%)
Merged 44 (19.1%)
Closed 110 (47.8%)
PR Types
Minor 44 (19.1%)
Major 5 (2.2%)
Patch 172 (74.8%)