Skip to content

Bump firebase/php-jwt from 6.10.2 to 7.0.0 in the composer group across 1 directory#3

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/composer/composer-5d5b6564db
Open

Bump firebase/php-jwt from 6.10.2 to 7.0.0 in the composer group across 1 directory#3
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/composer/composer-5d5b6564db

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Feb 18, 2026

Bumps the composer group with 1 update in the / directory: firebase/php-jwt.

Updates firebase/php-jwt from 6.10.2 to 7.0.0

Release notes

Sourced from firebase/php-jwt's releases.

v7.0.0

7.0.0 (2025-12-15)

⚠️ ⚠️ ⚠️ Security Fixes ⚠️ ⚠️ ⚠️

  • add key size validation (#613) (6b80341) NOTE: This fix will cause keys with a size below the minimally allowed size to break.

Features

  • add SensitiveParameter attribute to security-critical parameters (#603) (4dbfac0)
  • store timestamp in ExpiredException (#604) (f174826)

Bug Fixes

v6.11.1

6.11.1 (2025-04-09)

Bug Fixes

v6.11.0

6.11.0 (2025-01-23)

Features

Bug Fixes

  • refactor constructor Key to use PHP 8.0 syntax (#577) (29fa2ce)
Changelog

Sourced from firebase/php-jwt's changelog.

7.0.0 (2025-12-15)

⚠️ ⚠️ ⚠️ Security Fixes ⚠️ ⚠️ ⚠️

  • add key size validation (#613) (6b80341) NOTE: This fix will cause keys with a size below the minimally allowed size to break.

Features

  • add SensitiveParameter attribute to security-critical parameters (#603) (4dbfac0)
  • store timestamp in ExpiredException (#604) (f174826)

Bug Fixes

6.11.1 (2025-04-09)

Bug Fixes

6.11.0 (2025-01-23)

Features

Bug Fixes

  • refactor constructor Key to use PHP 8.0 syntax (#577) (29fa2ce)
Commits
  • c03036f chore(main): release 7.0.0 (#614)
  • 6b80341 feat: add key size validation (#613)
  • a3edb39 chore: update release-please secret (#608)
  • f174826 feat: store timestamp in ExpiredException (#604)
  • 4dbfac0 feat: add SensitiveParameter attribute to security-critical parameters (#603)
  • 223d1b3 chore: move release please from app to github action (#606)
  • 953b2c8 fix: validate iat and nbf on payload (#568)
  • 43d70ae fix: use DateTime::ATOM instead of ISO8601 in exception message
  • d1e91ec chore(main): release 6.11.1 (#597)
  • c11113a fix: update error text for consistency (#528)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions
    You can disable automated security fix PRs for this repo from the Security Alerts page.

@dependabot
Bump firebase/php-jwt in the composer group across 1 directory
c9245a0 
Bumps the composer group with 1 update in the / directory: [firebase/php-jwt](https://github.com/firebase/php-jwt).


Updates `firebase/php-jwt` from 6.10.2 to 7.0.0
- [Release notes](https://github.com/firebase/php-jwt/releases)
- [Changelog](https://github.com/firebase/php-jwt/blob/main/CHANGELOG.md)
- [Commits](firebase/php-jwt@v6.10.2...v7.0.0)

---
updated-dependencies:
- dependency-name: firebase/php-jwt
  dependency-version: 7.0.0
  dependency-type: direct:production
  dependency-group: composer
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels Feb 18, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants