silinternational / ssp-deps
Shared dependencies for simpleSAMLphp (aka. SSP) repos
Requires
- php: >=5.4
- roave/security-advisories: dev-master
- silinternational/php-env: 0.2.0
- silinternational/simplesamlphp-module-material: ^2.0
- silinternational/simplesamlphp-module-silauth: ^2.0
- silinternational/simplesamlphp-module-sildisco: dev-develop
- silinternational/ssp-utilities: dev-develop
- simplesamlphp/composer-module-installer: 1.1.5
- simplesamlphp/simplesamlphp: 1.14.12
This package is not auto-updated.
Last update: 2018-09-05 19:55:35 UTC
README
Shared dependencies for simpleSAMLphp (aka. SSP) repos
Versioning Scheme
The dependencies defined in this repo's composer.json file will use fully
specific versions so if a version in use become unsuitable (such as because of
a security vulnerability), we will have to update this repository. Forcing us
to do that will make sure we are aware of the needed change, giving us the
opportunity to update the composer.lock files of any other repos that depend
on this repo.
This repo's own version numbers will be incremented based on which part of one of it's dependencies' version numbers was changed. For example, if this depends on package abc/xyz at version 1.2.3, and we need to update to start using abc/xyz version 1.3.1, then we would increment this repo's minor version (such as by going from version 4.2.8 to 4.3.0).
Note: Until this repo reaches version 1.0.0, the versioning scheme will be effectively "0.(major).(minor-or-patch)". If a bug is fixed or a new feature added, this will increment from "0.x.y" to "0.x.(y+1)". If a potentially backwards-breaking change is made, it will increment from "0.x.y" to "0.(x+1).0". See https://getcomposer.org/doc/articles/versions.md#caret.
Updating to use newer dependencies
To update ssp-deps to reference newer versions of its composer dependencies,
run the following:
$ COMPOSER_ROOT_VERSION=dev-develop php composer.phar update --no-dev --no-scripts --ignore-platform-reqs