Skip to content

Bump guzzlehttp/psr7 from 1.9.1 to 2.10.2#140

Merged
vsouz4 merged 1 commit into
masterfrom
dependabot/composer/guzzlehttp/psr7-2.10.2
Jun 17, 2026
Merged

Bump guzzlehttp/psr7 from 1.9.1 to 2.10.2#140
vsouz4 merged 1 commit into
masterfrom
dependabot/composer/guzzlehttp/psr7-2.10.2

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 11, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps guzzlehttp/psr7 from 1.9.1 to 2.10.2.

Release notes

Sourced from guzzlehttp/psr7's releases.

2.10.2

Security

Fixed

  • Make ServerRequest::fromGlobals() robust against unexpected HTTP header value types in $_SERVER

2.10.1

Fixed

  • Fix Utils::modifyRequest() with numeric header names

2.10.0

  • Harden ServerRequest::fromGlobals() against malformed $_SERVER values
  • Prevent custom stream metadata from affecting internal size handling
  • Throw when StreamWrapper::getResource() cannot create a resource
  • Preserve custom request implementations in Utils::modifyRequest()
  • Preserve custom URI implementations in UriResolver::resolve()
  • Make Uri::__toString() side-effect-free

2.9.1

  • Fix parsing of relative path references containing a colon in a non-initial path segment
  • Fix CachingStream::detach() returning an incomplete resource before the decorated stream has been fully read
  • Fix Message::bodySummary() returning null when truncating printable UTF-8 bodies inside a multibyte character

2.9.0

Added

  • Added nested array expansion support to MultipartStream
  • Added @return static to MessageTrait methods

Changed

  • Updated MIME type mappings

See also the change log for changes.

2.8.1

Fixed

  • Encode + signs in Uri::withQueryValue() and Uri::withQueryValues() to prevent them being interpreted as spaces

See also the change log for changes.

... (truncated)

Changelog

Sourced from guzzlehttp/psr7's changelog.

2.10.2 - 2026-05-25

Security

Fixed

  • Make ServerRequest::fromGlobals() robust against unexpected HTTP header value types in $_SERVER

2.10.1 - 2026-05-20

Fixed

  • Fix Utils::modifyRequest() with numeric header names

2.10.0 - 2026-05-19

Changed

  • Harden ServerRequest::fromGlobals() against malformed $_SERVER values
  • Prevent custom stream metadata from affecting internal size handling
  • Throw when StreamWrapper::getResource() cannot create a resource
  • Preserve custom request implementations in Utils::modifyRequest()
  • Preserve custom URI implementations in UriResolver::resolve()
  • Make Uri::__toString() side-effect-free

2.9.1 - 2026-05-19

Fixed

  • Fix parsing of relative path references containing a colon in a non-initial path segment
  • Fix CachingStream::detach() returning an incomplete resource before the decorated stream has been fully read
  • Fix Message::bodySummary() returning null when truncating printable UTF-8 bodies inside a multibyte character

2.9.0 - 2026-03-10

Added

  • Added nested array expansion support to MultipartStream
  • Added @return static to MessageTrait methods

Changed

  • Updated MIME type mappings

2.8.1 - 2026-03-10

Fixed

... (truncated)

Commits

@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels Jun 11, 2026
@dependabot
Bump guzzlehttp/psr7 from 1.9.1 to 2.10.2
7db59ce 
Bumps [guzzlehttp/psr7](https://github.com/guzzle/psr7) from 1.9.1 to 2.10.2.
- [Release notes](https://github.com/guzzle/psr7/releases)
- [Changelog](https://github.com/guzzle/psr7/blob/2.12/CHANGELOG.md)
- [Commits](guzzle/psr7@1.9.1...2.10.2)

---
updated-dependencies:
- dependency-name: guzzlehttp/psr7
  dependency-version: 2.10.2
  dependency-type: direct:production
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot force-pushed the dependabot/composer/guzzlehttp/psr7-2.10.2 branch from e3016c6 to 7db59ce Compare June 17, 2026 13:41
@vsouz4 vsouz4 merged commit 939deed into master Jun 17, 2026
2 checks passed
@vsouz4 vsouz4 deleted the dependabot/composer/guzzlehttp/psr7-2.10.2 branch June 17, 2026 13:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@vsouz4