Update drupal/core-recommended from 10.4.8 to 10.5.2

[violinist-bot]

If you have a high test coverage index, and your tests for this pull request are passing, it should be both safe and recommended to merge this update.

Updated packages

Some times an update also needs new or updated dependencies to be installed. Even if this branch is for updating one dependency, it might contain other installs or updates. All of the updates in this branch can be found here:

• asm89/stack-cors: v2.3.0 (updated from v2.2.0)
• drupal/core: 10.5.2 (updated from 10.4.8)
• drupal/core-composer-scaffold: 10.5.2 (updated from 10.4.8)
• drupal/core-project-message: 10.5.2 (updated from 10.4.8)
• drupal/core-recommended: 10.5.2 (updated from 10.4.8)
• drupal/core-vendor-hardening: 10.5.2 (updated from 10.4.8)
• guzzlehttp/promises: 2.2.0 (updated from 2.0.4)
• mck89/peast: v1.17.2 (updated from v1.16.3)
• nikic/php-parser: v5.6.0 (updated from v5.5.0)
• symfony/console: v6.4.24 (updated from v6.4.22)
• symfony/dependency-injection: v6.4.24 (updated from v6.4.22)
• symfony/error-handler: v6.4.24 (updated from v6.4.22)
• symfony/event-dispatcher: v6.4.24 (updated from v6.4.13)
• symfony/filesystem: v6.4.24 (updated from v6.4.13)
• symfony/finder: v6.4.24 (updated from v6.4.17)
• symfony/http-foundation: v6.4.24 (updated from v6.4.22)
• symfony/http-kernel: v6.4.24 (updated from v6.4.22)
• symfony/mailer: v6.4.24 (updated from v6.4.21)
• symfony/mime: v6.4.24 (updated from v6.4.21)
• symfony/process: v6.4.24 (updated from v6.4.20)
• symfony/psr-http-message-bridge: v6.4.24 (updated from v6.4.13)
• symfony/routing: v6.4.24 (updated from v6.4.22)
• symfony/serializer: v6.4.24 (updated from v6.4.22)
• symfony/string: v6.4.24 (updated from v6.4.21)
• symfony/validator: v6.4.24 (updated from v6.4.22)
• symfony/var-dumper: v6.4.24 (updated from v6.4.21)
• symfony/var-exporter: v6.4.24 (updated from v6.4.22)
• symfony/yaml: v6.4.24 (updated from v6.4.21)
• twig/twig: v3.20.0 (updated from v3.19.0)
• composer/composer: 2.8.10 (updated from 2.8.6)
• dealerdirect/phpcodesniffer-composer-installer: v1.1.2 (updated from v1.0.0)
• drupal/core-dev: 10.5.2 (updated from 10.4.8)
• justinrainbow/json-schema: 6.4.2 (updated from 5.3.0)
• marc-mabe/php-enum: v4.7.1 (new package, previously not installed)
• myclabs/deep-copy: 1.13.4 (updated from 1.13.1)
• open-telemetry/api: 1.4.0 (updated from 1.3.0)
• open-telemetry/context: 1.3.0 (updated from 1.2.1)
• open-telemetry/exporter-otlp: 1.3.2 (updated from 1.3.1)
• open-telemetry/sdk: 1.7.0 (updated from 1.5.0)
• open-telemetry/sem-conv: 1.36.0 (updated from 1.32.0)
• phpstan/phpdoc-parser: 2.2.0 (updated from 2.1.0)
• phpstan/phpstan: 1.12.28 (updated from 1.12.27)
• slevomat/coding-standard: 8.20.0 (updated from 8.18.1)
• squizlabs/php_codesniffer: 3.13.2 (updated from 3.13.0)
• symfony/browser-kit: v6.4.24 (updated from v6.4.19)
• symfony/css-selector: v6.4.24 (updated from v6.4.13)
• symfony/dom-crawler: v6.4.24 (updated from v6.4.19)
• symfony/lock: v6.4.24 (updated from v6.4.13)
• symfony/phpunit-bridge: v6.4.24 (updated from v6.4.16)
• tbachert/spi: v1.0.5 (updated from v1.0.3)

Release notes

Here are the release notes for all versions released between your current running version, and the version this PR updates the package to.

List of release notes

• Release notes for tag 10.5.2
• Release notes for tag 10.5.1
• Release notes for tag 10.5.0
• Release notes for tag 10.5.0-rc1
• Release notes for tag 10.5.0-beta1
• Release notes for tag 10.4.8
• Release notes for tag 10.4.7
• Release notes for tag 10.4.6
• Release notes for tag 10.4.4
• Release notes for tag 10.4.3
• Release notes for tag 10.4.2
• Release notes for tag 10.4.1
• Release notes for tag 10.4.0
• Release notes for tag 10.4.0-rc1
• Release notes for tag 10.4.0-beta1

Changed files

Here is a list of changed files between the version you use, and the version this pull request updates to:

List of changed files

  composer.json

Changelog

Here is a list of changes between the version you use, and the version this pull request updates to:

• fde5c3c Drupal 10.5.2
• f0c7dbc Back to dev.
• 60b76ba Drupal 10.5.1
• 74d3345 Back to dev.
• e64c11c Drupal 10.5.0
• 9124856 Back to dev.
• 4479055 Drupal 10.5.0-rc1
• 79e7774 Back to dev.
• 3459e4f Drupal 10.5.0-beta1
• 5ea5299 Issue #3522354 by longwave, quietone: Update Composer dependencies for 10.5.0
• 0a0651b Issue #3471642 by luke.leber, drupalite1411, greggles: Upgrade asm89/stack-cors to prevent loss of Vary header values
• 11a8e99 Issue #3503195 by alexpott, longwave, loopy1492: Twig needs updating for CVE-2025-24374
• 939a4a7 Issue #3490183 by spokje, andypost: Update Composer dependencies for 10.4.0
• 214f60c Issue #3488365 by andypost, longwave: Upgrade twig/twig to 3.15.0
• 471a474 Revert "Issue #3488365 by andypost: Upgrade twig/twig to 3.15.0"
• 792ff81 Issue #3488365 by andypost: Upgrade twig/twig to 3.15.0
• effda1c Issue #3486545 by spokje, andypost: Update Composer dependencies for 10.4.0-beta1
• 3a9cf09 Issue #3485956 by mradcliffe, jan kellermann, gillesbailleux, raphaelbertrand, cilefen, larowlan: Recursion limit exceeded with Twig v3.14.1 when editing a node or a block
• 07a7e8d Drupal 10.5.x-dev

Working with this branch

If you find you need to update the codebase to be able to merge this branch (for example update some tests or rebuild some assets), please note that violinist will force push to this branch to keep it up to date. This means you should not work on this branch directly, since you might lose your work. Read more about branches created by violinist.io here.

---

This is an automated pull request from Violinist: Continuously and automatically monitor and update your composer dependencies. Have ideas on how to improve this message? All violinist messages are open-source, and can be improved here.