Gitiles
Code Review Sign In
gerrit.wikimedia.org / mediawiki / vendor / refs/heads/REL1_29
commitb65773308574b344ea9ad3ffa2598d63fca4d313[log] [tgz]
authorKunal Mehta <[email protected]>Fri Nov 10 16:09:51 2017 -0800
committerReedy <[email protected]>Tue Nov 14 23:46:13 2017 +0000
tree0014b6dfb6e92f8e1aa7f9d16b5c311037e11b42
parentd26cdc97eaeeded24e85bccbd39555720aa9738b [diff]
Add .htaccess to disallow web access

The /vendor directory does not need to be web accessible, and to reduce
attack surface, should not be web accessible.

Bug: T180237
Change-Id: I855212e10d6ff75d9778d275e0815a8ff19f1da7
2 files changed
tree: 0014b6dfb6e92f8e1aa7f9d16b5c311037e11b42
  1. composer/
  2. cssjanus/
  3. firebase/
  4. james-heinrich/
  5. justinrainbow/
  6. liuggio/
  7. mediawiki/
  8. monolog/
  9. nmred/
  10. oojs/
  11. oyejorge/
  12. pear/
  13. pimple/
  14. psr/
  15. ruflin/
  16. stil/
  17. symfony/
  18. wikimedia/
  19. zordius/
  20. .gitignore
  21. .gitreview
  22. .htaccess
  23. autoload.php
  24. composer.json
  25. composer.lock
  26. README.md
README.md

MediaWiki-Vendor

Composer managed libraries required or recommended for use with MediaWiki. This repository is maintained for use on the Wikimedia Foundation production and testing clusters, but may be useful for anyone wishing to avoid directly managing MediaWiki dependencies with Composer.

Usage

Checkout this library into $IP/vendor using git clone <URL> or add the repository as a git submodule using git submodule add <URL> vendor followed by git submodule update --init.

Adding or updating libraries

  1. Read the documentation on the process for adding new libraries.
  2. Ensure you're using the 1.4.1 version of composer via composer --version.
  3. Edit the composer.json file to add/update the libraries you want to change.
  4. Run composer update --no-dev to download files and update the autoloader.
  5. Add and commit changes as a gerrit patch.
  6. Review and merge changes.