Following structure is expected for your TYPO3 project (adapt script if it differs):
.
├── composer.json
├── composer.lock
├── patches
│ ├── ...
│ └── ...
└── scripts
└── download-patch-from-gerrit.phpsh
Usage:
./scripts/download-patch-from-gerrit.phpsh <some-id>
where <some-id>
is a Gerrit ID, like 68720
in the Gerrit URL https://review.typo3.org/c/Packages/TYPO3.CMS/+/68720
.
Running the script with this sample ID 68720
will show:
$ ./scripts/download-patch-from-gerrit.phpsh 68720
Subject is 'Prevent possible bypass of new password validation'
Created patch '/path/to/project/scripts/../patches/typo3-cms-extbase-68720.patch'
Created patch '/path/to/project/scripts/../patches/typo3-cms-felogin-68720.patch'
Please extend your composer.json with following block:
{
"extra": {
"patches": {
"typo3/cms-extbase": {
"Prevent possible bypass of new password validation": "patches/typo3-cms-extbase-68720.patch"
},
"typo3/cms-felogin": {
"Prevent possible bypass of new password validation": "patches/typo3-cms-felogin-68720.patch"
}
}
}
}
then run "composer update --lock".
Note: you may need to require composer package cweagans/composer-patches
first.
You should suggest
composer update --lock
instead since you don't want to update all packages.