ugh, composer.
There are 4 composer security advisories affecting our repositories.
Deserialization Gadget chain in Swift Mailer
CVE-2024-50345: Open redirect via browser-sanitized URLs
CVE-2025-64500: Incorrect parsing of PATH_INFO can lead to limited authorization bypass
CVE-2026-45073: SQL Injection in PdoAdapter::doClear() via Unsanitized $prefix