Bump yiisoft/yii2 from 2.0.50 to 2.0.52 in /core

[dependabot]

Bumps yiisoft/yii2 from 2.0.50 to 2.0.52.

Changelog

Sourced from yiisoft/yii2's changelog.

2.0.52 February 13, 2025

• Bug #17365: Fix "Trying to access array offset on null" warning (xcopy)
• Bug #20140: Fix compatibility with PHP 8.4: calling session_set_save_handler() (Izumi-kun)
• Bug #20231: Fix regression introduced in #20167 in yii\validators\FileValidator (bizley)
• Bug #20232: Fix regression introduced in GHSA-cjcc-p67m-7qxm while attaching behavior defined by __class array key (erickskrauch)
• Bug #20256: Add support for dropping views in MSSQL server when running migrate/fresh (ambrozt)
• Bug #20282: Fix compatibility with PHP 8.4: deprecated constant E_STRICT (Izumi-kun)
• Bug #20284: Revert punycode to 1.4.x which supports pre ES6 format (mtangoo)
• Bug #20292: Fix \yii\web\Session should not set cookie params, when session.use_cookies is false (cebe)
• Bug #20296: Fix broken enum test (briedis)
• Bug #20300: Clear stat cache in FileCache::setValue() (rob006)
• Bug #20308: Allow CompositeAuth auth methods to use their own user if defined (mtangoo)
• Bug #20313: Allow CompositeAuth auth methods to use their own request and response if defined (mtangoo)
• Enh #20247: Support for variadic console controller action methods (brandonkelly)
• Enh #20248: Add support for attaching behaviors in configurations with Closure (timkelty)
• Enh #20267: Fixed called class check in Widget::end() when widget configured using callable (rob006, jrajamaki)
• Enh #20268: Minor optimisation in \yii\helpers\BaseArrayHelper::map (chriscpty)
• Enh #20273: Remove unnecessary paragonie/random_compat dependency (timwolla)
• Enh #20279: Add to the \yii\web\Request csrfHeader property to configure a custom HTTP header for CSRF validation (olegbaturin)
• Enh #20279: Add to the \yii\web\Request csrfTokenSafeMethods property to configure a custom safe HTTP methods list (olegbaturin)
• Enh #20295: Add an ability to have wildcards in yii\log\Target::$maskVars array (xcopy)
• Enh #20306: Add new yii\helpers\ArrayHelper::flatten() method (xcopy)
• Chg #20276: Removed autogenerated migration phpdoc (userator)
• New #20185: Add BackedEnum support to AttributeTypecastBehavior (briedis)
• New #20279: Add to the \yii\web\Request CSRF validation by custom HTTP header (olegbaturin)
• New #20332: Added support for the '__class' key in \yii\di\Instance:eunsure(['__class' => ...]) (LAV45)

2.0.51 July 18, 2024

• Bug #16116: Codeception: oci does not support enabling/disabling integrity check (@​terabytesoftw)
• Bug #20147: Fix error handler compatibility with PHP 8.3 (samdark)
• Bug #20191: Fix ActiveRecord::getDirtyAttributes() for JSON columns with multi-dimensional array values (brandonkelly)
• Bug #20195: Do not set non abstract values into ColumnSchema->type on MSSQL version less then 2017 (axeltomasson)
• Bug #20211: Add acceptable parameters to MaskedInput::init() method (alxlnk)
• Bug #20226: Revert all PR for "Data providers perform unnecessary COUNT queries that negatively affect performance" (@​terabytesoftw)
• Bug #20230: Fix getting ID in \yii\filters\Cors::actions() when attached to a module (timkelty)

Commits

• 540e738 release version 2.0.52
• 960e512 Fix CHANGELOG
• 81825d3 Fix #20313: Allow CompositeAuth auth methods to use their own request and res...
• 61d459b Add tag case in controller.meta-storm.xml (#20312)
• 5783ba3 Fix #20308: Allow CompositeAuth auth methods to use their own user if defined
• e8ac65a Basic setup for MetaStorm (#20307)
• 89933f8 Fix #20306: Add new yii\helpers\ArrayHelper::flatten() method
• 5757e80 Fix #20295: Add an ability to have wildcards in yii\log\Target::$maskVars a...
• 4816fbb Fix #20300: Clear stat cache in FileCache::setValue()
• 136a748 Fix translation string (#20302)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.