vulnerabilities in composer dependencies

ugh, composer.

There are 4 composer security advisories affecting our repositories.

swiftmailer/swiftmailer (CVE-2024-28859)

Deserialization Gadget chain in Swift Mailer
details

Affected repositories (1)

mediawiki/extensions/SwiftMailer

symfony/http-foundation (CVE-2024-50345)

CVE-2024-50345: Open redirect via browser-sanitized URLs
details

Affected repositories (1)

🗄mediawiki/extensions/DonationInterface

twig/twig (CVE-2024-51754)

Unguarded calls to __toString() when nesting an object into an array
details

Affected repositories (1)

mediawiki/extensions/FundraisingEmailUnsubscribe

twig/twig (CVE-2024-51755)

Unguarded calls to __isset() and to array-accesses when the sandbox is enabled
details

Affected repositories (1)

mediawiki/extensions/FundraisingEmailUnsubscribe

Source code is licensed under the AGPL.