2.2.12 - released 2022-04-13
Changelog
- Security: Fixed command injection vulnerability in HgDriver/GitDriver (GHSA-x7cr-6qr6-2hh6 / CVE-2022-24828)
- Fixed curl downloader not retrying when a DNS resolution failure occurs (#10716)
- Fixed composer.lock file still being used/read when the
lockconfig option is disabled (#10726) - Fixed
validatecommand checking the lock file even if thelockoption is disabled (#10723)