[Security] Bump symfony/maker-bundle from 1.31.0 to 1.33.0

[dependabot-preview]

Bumps symfony/maker-bundle from 1.31.0 to 1.33.0. This update includes security fixes.

Vulnerabilities fixed

Sourced from The PHP Security Advisories Database.

CVE-2021-21424: Prevent user enumeration via response content in authentication mechanisms

Affected versions: >=1.27.0, =1.31.0, <1.31.1

Sourced from The PHP Security Advisories Database.

CVE-2021-21424: Prevent user enumeration via response content in authentication mechanisms

Affected versions: >=1.27.0, =1.31.0, <1.31.1

Release notes

Sourced from symfony/maker-bundle's releases.

Better Symfony 5.3 support & various bug fixes

Hi Makers!

We continue to improve MakerBundle to generate the most up-to-date code for Symfony 5.3! This releases contains 2 improvements for new 5.3 features.

v1.33.0

June 30th, 2021

Feature

• #895 - [make:crud] send the proper HTTP status codes and use renderForm() when available - @​dunglas
• #889 - [make:user] Use password_hashers instead of encoders - @​wouterj

Bug Fix

• #913 - [make:registration] conditionally generate verify email flash in template - @​jrushlow
• #881 - [make:entity] Fix error when API-Platform is installed. - @​MichaelBrauner

Diff: symfony/maker-bundle@v1.32.0...v1.33.0

Happy making!

Fixes for Symfony 5.3 & Other Various things

Hi Makers!

This release contains a few bug fixes specific to symfony 5.3 and various other little goodies:

June 18th, 2021

Feature

• #877 - [make:entity] Default to "datetime_immutable" when creating entities - @​nicolas-grekas

Bug Fix

• #899 - Use proper name for parameter of upgradePassword - @​Tobion
• #896 - Fix keys not found when surrounded by quotes - @​valentinloiseau
• #890 - [make:user] Keep implementing deprecated username methods - @​wouterj

Diff: symfony/maker-bundle@v1.31.1...v1.32.0

Happy making!

cve-2021-21424 Prevent user enumeration

CHANGELOG

security #cve-2021-21424 Prevent user enumeration (chalasr)

Changelog

Sourced from symfony/maker-bundle's changelog.

v1.33.0

June 30th, 2021

Feature

• #895 - [make:crud] send the proper HTTP status codes and use renderForm() when available - @​dunglas
• #889 - [make:user] Use password_hashers instead of encoders - @​wouterj

Bug Fix

• #913 - [make:registration] conditionally generate verify email flash in template - @​jrushlow
• #881 - [make:entity] Fix error when API-Platform is installed. - @​MichaelBrauner

v1.32.0

June 18th, 2021

Feature

• #877 - [make:entity] Default to "datetime_immutable" when creating entities - @​nicolas-grekas

Bug Fix

• #899 - Use proper name for parameter of upgradePassword - @​Tobion
• #896 - Fix keys not found when surrounded by quotes - @​valentinloiseau
• #890 - [make:user] Keep implementing deprecated username methods - @​wouterj

v1.31.1

May 12th, 2021

Security

• security - CVE-2021-21424 Prevent user enumeration - @​chalasr

Commits

• f093d90 minor #917 [release] v1.33.0 (jrushlow)
• aa1b721 [release] v1.33.0
• 7b5c342 minor #914 [make:registration] cleanup maker and template (jrushlow)
• 771444d [make:registration] cleanup maker and template
• d2dcd33 minor #916 [CI] Skip Mercure test if not setup (weaverryan)
• 4484837 skip Mercure test if not setup
• 6e951c6 minor #915 [CI] Fixes test error about missing annotation_reader (weaverryan)
• e01259e Fixes test error about missing annotation_reader
• 936db0f bug #881 [make:entity] Fix error when API-Platform is installed. (MichaelBrau...
• 65801a9 [make:entity] Fix error when API-Platform is installed.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information