build(deps): update composer dependencies to resolve security alert#71
Merged
Conversation
- Added CLAUDE.md with project overview and architecture - Documented development commands for PHP and frontend workflows - Included code structure, configuration, and quality tool information
- Bump firebase/php-jwt from v6.11.1 to v7.0.2 (Dependabot #137) - Bump google/apiclient from v2.18.3 to v2.19.0 - Bump google/apiclient-services from v0.397.0 to v0.433.0
- Removed `// @phpstan-ignore-next-line` as it is no longer needed
- Update firebase/php-jwt v6.9.0 → v7.0.2 - Update google/apiclient v2.15.1 → v2.19.0 - Update related transitive dependencies Resolves: https://github.com/sectsect/google-spreadsheet-to-db/security/dependabot/138
|
You have run out of free Bugbot PR reviews for this billing cycle. This will reset on March 14. To receive reviews on all of your PRs, visit the Cursor dashboard to activate Pro and start your 14-day free trial. |
✅ WordPress Plugin Check Report
📊 ReportAll checks passed! No errors or warnings found. 🤖 Generated by WordPress Plugin Check Action • Learn more about Plugin Check |
- Added services block with MariaDB 10.11 container - Removed getong/mariadb-action@v1.1 step - Fixed Docker API version compatibility issue (v1.40 vs v1.44)
- Added direct file access protection to 7 core PHP files - Prevents direct execution of plugin files outside WordPress context - Fixes Plugin Check validation errors
- Added 'tests' to exclude-directories in plugin-check workflow - Test files don't require ABSPATH protection (run outside WordPress context)
- Added platform.php = 8.1.0 to composer.json config - Downgraded doctrine/instantiator from 2.1.0 to 2.0.0 - doctrine/instantiator 2.1.0 requires PHP ^8.4, incompatible with CI matrix (8.1, 8.2, 8.3)
Plugin Check requires all PHP files to prevent direct access.
Adding coverage: none to shivammathur/setup-php prevents Xdebug from being installed, which resolves test failures caused by the interaction between Xdebug and forceCoversAnnotation in phpunit.xml.dist. This also significantly improves test execution speed.
mariadb:10.11 caused dbDelta to fail silently, breaking table creation in test_activate_no_previous_version and test_activate_outdated_version. mariadb:lts (11.4) matches the environment used before the Docker API compatibility fix and restores all 15 tests to PASS.
- Prefix all file-scope variables in save.php and class-recursivetable.php - Rename activate_google_ss2db() to google_ss2db_activate() - Rename register_google_ss2db_settings() to google_ss2db_register_settings() - Rename get_sort_url() to google_ss2db_get_sort_url() and update all call sites - Replace wp_redirect() with wp_safe_redirect() in save.php
- Replace exit with conditional wp-load.php require so the file can self-bootstrap when accessed directly as a form handler - Remove duplicate require_once that followed the guard - Drop stale class-level docblock that misidentified the file as a class - Add phpcs:ignore to suppress DirectFileAccess.WPLoad rule
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
build(deps): update composer dependencies to resolve security alert