Error: dealerdirect/phpcodesniffer-composer-installer contains a Composer plugin which is blocked by your allow-plugins config. #185
Comments
|
@helgatheviking This is not an issue with this plugin, but with a "security feature" which was introduced in Composer 2.2. See this announcement post: https://blog.packagist.com/composer-2-2/#more-secure-plugin-execution The Usage section of the readme contains all the info you need to solve this. Nothing we can do about this, but you can fix it yourself by adding the permission. Hope this helps. |
|
Thanks so much @jrfnl . I still struggle with this ever since you got my plugin set up to run phpcs. :) I guess I don't understand the point of Hopefully last question... can the woocommerce-sniffs repo add the |
Well, it was introduced as a security feature and while this plugin is quite innocent and limited in what it does (and therefore not problematic), there are other plugins which can make code changes in dependencies, so I can see how the
The Pro-tip for the |
|
@helgatheviking Can we close this issue as "answered" ? |
|
@Potherca FYI: I've added this issue to the "pinned issues" and remove the pins related to Composer 2.x and PHP 8.0 as those are a bit dated by now. |
|
I'm cool with that. Thank you for the detailed explanation. |
Problem/Motivation
My github action is terminating with an error.
My github action is calling
composer installCurrently the action appears to be installing composer 2.3.10.
My
composer.jsonis only includingwoocommerce-sniffswhich appears to require"dealerdirect/phpcodesniffer-composer-installer": "^0.7.0",
Expected behaviour
composer installfinishes without throwing exception that ends the github actionActual behaviour
the action is failing with the following message:
the GH action log
Steps to reproduce
Building a release asset on git tag for plugin repo
{ "name": "kathyisawesome/wc-not-sold-separately", "description": "Optionally restrict products to sale only as part of Mix and Match Product.", "homepage": "https://github.com/kathyisawesome/wc-not-sold-separately", "type": "wordpress-plugin", "license": "GPL-3.0-or-later", "require-dev": { "woocommerce/woocommerce-sniffs": "0.1.3" }, "scripts": { "phpcs": [ "phpcs . -s -p -n" ], "phpcs-pre-commit": [ "phpcs . -s -p -n" ], "phpcb": [ "phpcbf . " ] }, "extra": { "scripts-description": { "phpcs": "Analyze code against the WordPress coding standards with PHP_CodeSniffer", "phpcb": "Fix coding standards warnings/errors automatically with PHP Code Beautifier" } } }Proposed changes
Environment
vendor/bin/phpcs --config-show:Tested against
masterbranch?masterbranch.If this is something known to be resolved in
masterthen I will open a ticket withwoocommerce/woocommerce-sniffsto update. I just wasn't sure where this issue originated so starting here.The text was updated successfully, but these errors were encountered: