githubfromgui
diff --git a/‎[refs]
Lines changed: 1 addition & 1 deletion b/‎[refs]
Lines changed: 1 addition & 1 deletion
diff --git a/‎trunk/_build/redirection_map
Lines changed: 0 additions & 1 deletion b/‎trunk/_build/redirection_map
Lines changed: 0 additions & 1 deletion
diff --git a/‎trunk/_images/components/workflow/pull_request_puml_styled.png
-22.6 KB b/‎trunk/_images/components/workflow/pull_request_puml_styled.png
-22.6 KB
diff --git a/‎trunk/components/lock.rst
Lines changed: 9 additions & 22 deletions b/‎trunk/components/lock.rst
Lines changed: 9 additions & 22 deletions
diff --git a/‎trunk/components/mime.rst
Lines changed: 0 additions & 2 deletions b/‎trunk/components/mime.rst
Lines changed: 0 additions & 2 deletions
diff --git a/‎trunk/components/phpunit_bridge.rst
Lines changed: 0 additions & 2 deletions b/‎trunk/components/phpunit_bridge.rst
Lines changed: 0 additions & 2 deletions
diff --git a/‎trunk/components/property_info.rst
Lines changed: 2 additions & 8 deletions b/‎trunk/components/property_info.rst
Lines changed: 2 additions & 8 deletions
diff --git a/‎trunk/components/var_dumper.rst
Lines changed: 0 additions & 7 deletions b/‎trunk/components/var_dumper.rst
Lines changed: 0 additions & 7 deletions
diff --git a/‎trunk/contributing/code/security.rst
Lines changed: 1 addition & 2 deletions b/‎trunk/contributing/code/security.rst
Lines changed: 1 addition & 2 deletions
diff --git a/‎trunk/contributing/documentation/format.rst
Lines changed: 3 additions & 3 deletions b/‎trunk/contributing/documentation/format.rst
Lines changed: 3 additions & 3 deletions
diff --git a/‎trunk/event_dispatcher.rst
Lines changed: 9 additions & 15 deletions b/‎trunk/event_dispatcher.rst
Lines changed: 9 additions & 15 deletions
diff --git a/‎trunk/frontend.rst
Lines changed: 1 addition & 1 deletion b/‎trunk/frontend.rst
Lines changed: 1 addition & 1 deletion
diff --git a/‎trunk/mercure.rst
Lines changed: 1 addition & 1 deletion b/‎trunk/mercure.rst
Lines changed: 1 addition & 1 deletion
diff --git a/‎trunk/profiler.rst
Lines changed: 2 additions & 2 deletions b/‎trunk/profiler.rst
Lines changed: 2 additions & 2 deletions
diff --git a/‎trunk/quick_tour/the_big_picture.rst
Lines changed: 4 additions & 4 deletions b/‎trunk/quick_tour/the_big_picture.rst
Lines changed: 4 additions & 4 deletions
diff --git a/‎trunk/reference/configuration/doctrine.rst
Lines changed: 2 additions & 2 deletions b/‎trunk/reference/configuration/doctrine.rst
Lines changed: 2 additions & 2 deletions
diff --git a/‎trunk/reference/dic_tags.rst
Lines changed: 0 additions & 16 deletions b/‎trunk/reference/dic_tags.rst
Lines changed: 0 additions & 16 deletions
diff --git a/‎trunk/security.rst
Lines changed: 6 additions & 0 deletions b/‎trunk/security.rst
Lines changed: 6 additions & 0 deletions
diff --git a/‎trunk/security/security_checker.rst
Lines changed: 29 additions & 0 deletions b/‎trunk/security/security_checker.rst
Lines changed: 29 additions & 0 deletions
@@ -92,4 +92,4 @@ refs/heads/3.3: 93587037fef6a2f40e0cbdea41754e1e76255fe6
 refs/heads/weaverryan-patch-1: a52aee3dceba3357dd59558677811a2ff86d1357
 refs/heads/4.0: e887a8b5e5d102235545837506f1d4e883f051a5
 refs/heads/4.1: 67f3845bc17a81379c609af1944099706e5b429e
-refs/heads/5.x: 8aa0cd4df8c4d75a1a40f4e4cbca86ea68f204dc
+refs/heads/5.x: 45d6b28fe370d4be1a6bb003f93655dff2d79d69
@@ -427,4 +427,3 @@
 /contributing/community/other /contributing/community
 /profiler/storage /profiler
 /setup/composer /setup
-/security/security_checker /setup
@@ -24,21 +24,16 @@ Locks are used to guarantee exclusive access to some shared resource. In
 Symfony applications, you can use locks for example to ensure that a command is
 not executed more than once at the same time (on the same or different servers).
 
-Locks are created using a :class:`Symfony\\Component\\Lock\\LockFactory` class,
+Locks are created using a :class:`Symfony\\Component\\Lock\\Factory` class,
 which in turn requires another class to manage the storage of locks::
 
-    use Symfony\Component\Lock\LockFactory;
+    use Symfony\Component\Lock\Factory;
     use Symfony\Component\Lock\Store\SemaphoreStore;
 
     $store = new SemaphoreStore();
-    $factory = new LockFactory($store);
+    $factory = new Factory($store);
 
-.. versionadded:: 4.4
-
-    The ``Symfony\Component\Lock\LockFactory`` class was introduced in Symfony
-    4.4. In previous versions it was called ``Symfony\Component\Lock\Factory``.
-
-The lock is created by calling the :method:`Symfony\\Component\\Lock\\LockFactory::createLock`
+The lock is created by calling the :method:`Symfony\\Component\\Lock\\Factory::createLock`
 method. Its first argument is an arbitrary string that represents the locked
 resource. Then, a call to the :method:`Symfony\\Component\\Lock\\LockInterface::acquire`
 method will try to acquire the lock::
@@ -61,7 +56,7 @@ method can be safely called repeatedly, even if the lock is already acquired.
     Unlike other implementations, the Lock Component distinguishes locks
     instances even when they are created for the same resource. If a lock has
     to be used by several services, they should share the same ``Lock`` instance
-    returned by the ``LockFactory::createLock`` method.
+    returned by the ``Factory::createLock`` method.
 
 .. tip::
 
@@ -82,13 +77,13 @@ until the lock is acquired.
 Some of the built-in ``Store`` classes support this feature. When they don't,
 they can be decorated with the ``RetryTillSaveStore`` class::
 
-    use Symfony\Component\Lock\LockFactory;
+    use Symfony\Component\Lock\Factory;
     use Symfony\Component\Lock\Store\RedisStore;
     use Symfony\Component\Lock\Store\RetryTillSaveStore;
 
     $store = new RedisStore(new \Predis\Client('tcp://localhost:6379'));
     $store = new RetryTillSaveStore($store);
-    $factory = new LockFactory($store);
+    $factory = new Factory($store);
 
     $lock = $factory->createLock('notification-flush');
     $lock->acquire(true);
@@ -213,10 +208,8 @@ Available Stores
 ----------------
 
 Locks are created and managed in ``Stores``, which are classes that implement
-:class:`Symfony\\Component\\Lock\\PersistStoreInterface` and, optionally,
-:class:`Symfony\\Component\\Lock\\BlockingStoreInterface`.
-
-The component includes the following built-in store types:
+:class:`Symfony\\Component\\Lock\\StoreInterface`. The component includes the
+following built-in store types:
 
 ============================================  ======  ========  ========
 Store                                         Scope   Blocking  Expiring
@@ -229,12 +222,6 @@ Store                                         Scope   Blocking  Expiring
 :ref:`ZookeeperStore <lock-store-zookeeper>`  remote  no        no
 ============================================  ======  ========  ========
 
-.. versionadded:: 4.4
-
-    The ``PersistStoreInterface`` and ``BlockingStoreInterface`` interfaces were
-    introduced in Symfony 4.4. In previous versions there was only one interface
-    called ``Symfony\Component\Lock\StoreInterface``.
-
 .. _lock-store-flock:
 
 FlockStore
 
@@ -254,8 +254,6 @@ MIME types and file name extensions::
 These methods return arrays with one or more elements. The element position
 indicates its priority, so the first returned extension is the preferred one.
 
-.. _components-mime-type-guess:
-
 Guessing the MIME Type
 ~~~~~~~~~~~~~~~~~~~~~~
 
 
@@ -521,7 +521,6 @@ constraint to test the validity of the email domain::
             $result = $validator->validate('foo@example.com', $constraint);
 
             // ...
-        }
     }
 
 In order to avoid making a real network connection, add the ``@dns-sensitive``
@@ -546,7 +545,6 @@ the data you expect to get for the given hosts::
             $result = $validator->validate('foo@example.com', $constraint);
 
             // ...
-        }
     }
 
 The ``withMockedHosts()`` method configuration is defined as an array. The keys
 
@@ -351,9 +351,8 @@ ReflectionExtractor
 
 Using PHP reflection, the :class:`Symfony\\Component\\PropertyInfo\\Extractor\\ReflectionExtractor`
 provides list, type and access information from setter and accessor methods.
-It can also give the type of a property (even extracting it from the constructor
-arguments), and if it is initializable through the constructor. It supports
-return and scalar types for PHP 7::
+It can also give the type of a property, and if it is initializable through the
+constructor. It supports return and scalar types for PHP 7::
 
     use Symfony\Component\PropertyInfo\Extractor\ReflectionExtractor;
 
@@ -372,11 +371,6 @@ return and scalar types for PHP 7::
     // Initializable information
     $reflectionExtractor->isInitializable($class, $property);
 
-.. versionadded:: 4.1
-
-    The feature to extract the property types from constructor arguments was
-    introduced in Symfony 4.1.
-
 .. note::
 
     When using the Symfony framework, this service is automatically registered
 
@@ -224,13 +224,6 @@ option. Read more about this and other options in
     are supported (``Ctrl. + G`` or ``Cmd. + G``, ``F3``, etc.) When
     finished, press ``Esc.`` to hide the box again.
 
-    If you want to use your browser search input, press ``Ctrl. + F`` or
-    ``Cmd. + F`` again while having focus on VarDumper's search input.
-
-    .. versionadded:: 4.4
-
-        The feature to use the browser search input was introduced in Symfony 4.4.
-
 Using the VarDumper Component in your PHPUnit Test Suite
 --------------------------------------------------------
 
 
@@ -169,8 +169,7 @@ Security Advisories
 .. tip::
 
     You can check your Symfony application for known security vulnerabilities
-    using the ``security:check`` command provided by the
-    :ref:`Symfony security checker <security-checker>`.
+    using the ``security:check`` command (see :doc:`/security/security_checker`).
 
 Check the `Security Advisories`_ blog category for a list of all security
 vulnerabilities that were fixed in Symfony releases, starting from Symfony
 
@@ -210,9 +210,9 @@ Symfony 5.0 were released today, 4.0 to 4.4 ``versionadded`` and ``deprecated``
 tags would be removed from the new ``5.0`` branch.
 
 .. _reStructuredText: http://docutils.sourceforge.net/rst.html
-.. _Sphinx: https://www.sphinx-doc.org/
+.. _Sphinx: http://sphinx-doc.org/
 .. _`Symfony documentation`: https://github.com/symfony/symfony-docs
-.. _`reStructuredText Primer`: https://www.sphinx-doc.org/en/master/usage/restructuredtext/basics.html
+.. _`reStructuredText Primer`: http://sphinx-doc.org/rest.html
 .. _`reStructuredText Reference`: http://docutils.sourceforge.net/docs/user/rst/quickref.html
-.. _`Sphinx Markup Constructs`: https://www.sphinx-doc.org/en/1.7/markup/index.html
+.. _`Sphinx Markup Constructs`: http://sphinx-doc.org/markup/
 .. _`supported languages`: http://pygments.org/languages/
@@ -27,12 +27,12 @@ The most common way to listen to an event is to register an **event listener**::
     namespace App\EventListener;
 
     use Symfony\Component\HttpFoundation\Response;
-    use Symfony\Component\HttpKernel\Event\ExceptionEvent;
+    use Symfony\Component\HttpKernel\Event\GetResponseForExceptionEvent;
     use Symfony\Component\HttpKernel\Exception\HttpExceptionInterface;
 
     class ExceptionListener
     {
-        public function onKernelException(ExceptionEvent $event)
+        public function onKernelException(GetResponseForExceptionEvent $event)
         {
             // You get the exception object from the received event
             $exception = $event->getException();
@@ -63,16 +63,10 @@ The most common way to listen to an event is to register an **event listener**::
 .. tip::
 
     Each event receives a slightly different type of ``$event`` object. For
-    the ``kernel.exception`` event, it is :class:`Symfony\\Component\\HttpKernel\\Event\\ExceptionEvent`.
+    the ``kernel.exception`` event, it is :class:`Symfony\\Component\\HttpKernel\\Event\\GetResponseForExceptionEvent`.
     Check out the :doc:`Symfony events reference </reference/events>` to see
     what type of object each event provides.
 
-.. versionadded::
-
-    The :class:`Symfony\\Component\\HttpKernel\\Event\\ExceptionEvent` class was
-    introduced in Symfony 4.3. In previous versions it was called
-    ``Symfony\Component\HttpKernel\Event\GetResponseForExceptionEvent``.
-
 Now that the class is created, you need to register it as a service and
 notify Symfony that it is a "listener" on the ``kernel.exception`` event by
 using a special "tag":
@@ -157,7 +151,7 @@ listen to the same ``kernel.exception`` event::
     namespace App\EventSubscriber;
 
     use Symfony\Component\EventDispatcher\EventSubscriberInterface;
-    use Symfony\Component\HttpKernel\Event\ExceptionEvent;
+    use Symfony\Component\HttpKernel\Event\GetResponseForExceptionEvent;
     use Symfony\Component\HttpKernel\KernelEvents;
 
     class ExceptionSubscriber implements EventSubscriberInterface
@@ -174,17 +168,17 @@ listen to the same ``kernel.exception`` event::
             ];
         }
 
-        public function processException(ExceptionEvent $event)
+        public function processException(GetResponseForExceptionEvent $event)
         {
             // ...
         }
 
-        public function logException(ExceptionEvent $event)
+        public function logException(GetResponseForExceptionEvent $event)
         {
             // ...
         }
 
-        public function notifyException(ExceptionEvent $event)
+        public function notifyException(GetResponseForExceptionEvent $event)
         {
             // ...
         }
@@ -213,11 +207,11 @@ or a "sub request"::
     // src/EventListener/RequestListener.php
     namespace App\EventListener;
 
-    use Symfony\Component\HttpKernel\Event\RequestEvent;
+    use Symfony\Component\HttpKernel\Event\GetResponseEvent;
 
     class RequestListener
     {
-        public function onKernelRequest(RequestEvent $event)
+        public function onKernelRequest(GetResponseEvent $event)
         {
             if (!$event->isMasterRequest()) {
                 // don't do anything if it's not the master request
 
@@ -109,6 +109,6 @@ Other Front-End Articles
 .. _`Webpack`: https://webpack.js.org/
 .. _`Webpacker`: https://github.com/rails/webpacker
 .. _`Mix`: https://laravel.com/docs/mix
-.. _`Symfony`: https://symfony.com/
+.. _`Symfony`: http://symfony.com/
 .. _`Full API`: https://github.com/symfony/webpack-encore/blob/master/index.js
 .. _`Webpack Encore screencast series`: https://symfonycasts.com/screencast/webpack-encore
@@ -101,7 +101,7 @@ to the Mercure Hub to be authorized to publish updates.
 
 This JWT should be stored in the ``MERCURE_JWT_SECRET`` environment variable.
 
-The JWT must be signed with the same secret key as the one used by
+The JWT must be signed with the same secret key than the one used by
 the Hub to verify the JWT (``aVerySecretKey`` in our example).
 Its payload must contain at least the following structure to be allowed to
 publish:
 
@@ -97,14 +97,14 @@ which provides utilities to profile code and displays the results on the
 
 When using :ref:`autowiring <services-autowire>`, type-hint any argument with
 the :class:`Symfony\\Component\\Stopwatch\\Stopwatch` class and Symfony will
-inject the Stopwatch service. Then, use the ``start()``, ``lap()`` and
+inject the Stopwatch service. Then, use the ``start()``, ``lapse()`` and
 ``stop()`` methods to measure time::
 
     // a user signs up and the timer starts...
     $stopwatch->start('user-sign-up');
 
     // ...do things to sign up the user...
-    $stopwatch->lap('user-sign-up');
+    $stopwatch->lapse('user-sign-up');
 
     // ...the sign up process is finished
     $stopwatch->stop('user-sign-up');
 
@@ -41,13 +41,13 @@ Symfony application:
 
 Can we already load the project in a browser? Yes! You can setup
 :doc:`Nginx or Apache </setup/web_server_configuration>` and configure their
-document root to be the ``public/`` directory. But, for development, it's better
-to :doc:`install the Symfony local web server </setup/symfony_server>` and run
-it as follows:
+document root to be the ``public/`` directory. But, for development, Symfony has
 its own server. Install and run it with:
 
 .. code-block:: terminal
 
-    $ symfony server:start
+    $ composer require --dev server
+    $ php bin/console server:start
 
 Try your new app by going to ``http://localhost:8000`` in a browser!
 
 
@@ -157,7 +157,7 @@ which is the first one defined or the one configured via the
 Each connection is also accessible via the ``doctrine.dbal.[name]_connection``
 service where ``[name]`` is the name of the connection.
 
-.. _DBAL documentation: https://docs.doctrine-project.org/projects/doctrine-dbal/en/latest/reference/configuration.html
+.. _DBAL documentation: http://docs.doctrine-project.org/projects/doctrine-dbal/en/latest/reference/configuration.html
 
 Doctrine ORM Configuration
 --------------------------
@@ -436,4 +436,4 @@ If the ``dir`` configuration is set and the ``is_bundle`` configuration
 is ``true``, the DoctrineBundle will prefix the ``dir`` configuration with
 the path of the bundle.
 
-.. _`DQL User Defined Functions`: https://docs.doctrine-project.org/projects/doctrine-orm/en/latest/cookbook/dql-user-defined-functions.html
+.. _`DQL User Defined Functions`: http://docs.doctrine-project.org/projects/doctrine-orm/en/latest/cookbook/dql-user-defined-functions.html
@@ -26,7 +26,6 @@ Tag Name                                  Usage
 `kernel.event_subscriber`_                To subscribe to a set of different events/hooks in Symfony
 `kernel.fragment_renderer`_               Add new HTTP content rendering strategies
 `kernel.reset`_                           Allows to clean up services between requests
-`mime.mime_type_guesser`_                 Add your own logic for guessing MIME types
 `monolog.logger`_                         Logging with a custom logging channel
 `monolog.processor`_                      Add a custom processor for logging
 `routing.loader`_                         Register a custom service that loads routes
@@ -467,21 +466,6 @@ reuse the Symfony application between requests to improve performance. This tag
 is applied for example to the built-in :doc:`data collectors </profiler/data_collector>`
 of the profiler to delete all their information.
 
-.. _dic_tags-mime:
-
-mime.mime_type_guesser
-----------------------
-
-**Purpose**: Add your own logic for guessing MIME types
-
-This tag is used to register your own :ref:`MIME type guessers <components-mime-type-guess>`
-in case the guessers provided by the :doc:`Mime component </components/mime>`
-don't fit your needs.
-
-.. versionadded:: 4.3
-
-    The ``mime.mime_type_guesser`` tag was introduced in Symfony 4.3.
-
 .. _dic_tags-monolog:
 
 monolog.logger
 
@@ -928,6 +928,11 @@ For example, in a controller extending from the :ref:`base controller <the-base-
     :doc:`security voter </security/voters>` that looks for the user roles
     in the database.
 
+Checking for Security Vulnerabilities in your Dependencies
+----------------------------------------------------------
+
+See :doc:`/security/security_checker`.
+
 Frequently Asked Questions
 --------------------------
 
@@ -1000,6 +1005,7 @@ Authorization (Denying Access)
     security/access_denied_handler
     security/acl
     security/force_https
+    security/security_checker
 
 .. _`frameworkextrabundle documentation`: https://symfony.com/doc/current/bundles/SensioFrameworkExtraBundle/index.html
 .. _`HWIOAuthBundle`: https://github.com/hwi/HWIOAuthBundle
 
@@ -0,0 +1,29 @@
+.. index::
+    single: Security; Vulnerability Checker
+
+How to Check for Known Security Vulnerabilities in Your Dependencies
+====================================================================
+
+When using lots of dependencies in your Symfony projects, some of them may
+contain security vulnerabilities. That's why the :doc:`Symfony local server </setup/symfony_server>`
+includes a command called ``security:check`` that checks your ``composer.lock``
+file to find known security vulnerabilities in your installed dependencies:
+
+.. code-block:: terminal
+
+    $ symfony security:check
+
+A good security practice is to execute this command regularly to be able to
+update or replace compromised dependencies as soon as possible. The security
+check is done locally by cloning the `security advisories database`_ published
+by the FriendsOfPHP organization, so your ``composer.lock`` file is not sent on
+the network.
+
+.. tip::
+
+    The ``security:check`` command terminates with a non-zero exit code if
+    any of your dependencies is affected by a known security vulnerability.
+    This way you can add it to your project build process and your continuous
+    integration workflows to make them fail when there are vulnerabilities.
+
+.. _`security advisories database`: https://github.com/FriendsOfPHP/security-advisories
Original file line number	Diff line number	Diff line change
`@@ -521,7 +521,6 @@ constraint to test the validity of the email domain::`
`521`	`521`	`$result = $validator->validate('foo@example.com', $constraint);`
`522`	`522`
`523`	`523`	`// ...`
`524`		`- }`
`525`	`524`	`}`
`526`	`525`
`527`	`526`	In order to avoid making a real network connection, add the ``@dns-sensitive``
`@@ -546,7 +545,6 @@ the data you expect to get for the given hosts::`
`546`	`545`	`$result = $validator->validate('foo@example.com', $constraint);`
`547`	`546`
`548`	`547`	`// ...`
`549`		`- }`
`550`	`548`	`}`
`551`	`549`
`552`	`550`	The ``withMockedHosts()`` method configuration is defined as an array. The keys