GitLab now enforces expiry dates on tokens that originally had no set expiration date. Those tokens were given an expiration date of one year later. Please review your personal access tokens, project access tokens, and group access tokens to ensure you are aware of upcoming expirations. Administrators of GitLab can find more information on how to identify and mitigate interruption in our documentation.

fix: dev dependency security update

Replaced an archived/abandoned php package liamdennehy/http-signatures-php with 99designs/http-signatures. There is a possibility that the old package has dev dependency of symfony/http-foundation which in the current version has a security vulnerability CVE-2025-64500

Edited Nov 18, 2025 by Jitu

Admin message

fix: dev dependency security update