zoneminder/web/api/composer.json at ae148db5acfbbab8cb161ffb1d27dd24a5c75813

mirror of https://github.com/ZoneMinder/zoneminder.git synced 2026-05-15 18:14:36 -04:00

Files

Isaac Connor 4a730d6934 fix: remove vulnerable phpunit dev dependency (CVE-2026-24765)

Remove phpunit/phpunit from require-dev in web/api/composer.json.
The pinned ^3.7 version is vulnerable to unsafe deserialization in
PHPT code coverage handling. Since ZoneMinder does not run CakePHP
unit tests in CI, the dependency is unused.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

2026-02-11 21:59:03 -05:00

1.1 KiB

Raw Blame History

View Raw

1.1 KiB Raw Blame History

1.1 KiB

Raw Blame History