From a2d2b27bc99014c43d68cefbc17847f5d1a8930b Mon Sep 17 00:00:00 2001
From: snyk-bot <snyk-bot@snyk.io>
Date: Wed, 10 Dec 2025 09:53:53 +0000
Subject: [PATCH 1/2] fix: docker/php-cli/Dockerfile to reduce vulnerabilities

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-DEBIAN11-NGHTTP2-5953384
- https://snyk.io/vuln/SNYK-DEBIAN11-SYSTEMD-6277510
- https://snyk.io/vuln/SNYK-DEBIAN11-SYSTEMD-6277510
- https://snyk.io/vuln/SNYK-DEBIAN11-KRB5-7411316
- https://snyk.io/vuln/SNYK-DEBIAN11-LIBXML2-8732585
---
 docker/php-cli/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docker/php-cli/Dockerfile b/docker/php-cli/Dockerfile
index e2f8efa..7c3e604 100644
--- a/docker/php-cli/Dockerfile
+++ b/docker/php-cli/Dockerfile
@@ -3,7 +3,7 @@ ENV COMPOSER_HOME=/usr/config/composer
 ARG GITHUB_TOKEN
 RUN composer config -g github-oauth.github.com $GITHUB_TOKEN
 
-FROM php:8.0-fpm
+FROM php:8.5.0-fpm
 ENV COMPOSER_HOME=/usr/config/composer
 ARG USER_ID
 ARG GROUP_ID

From 291f85db9b0851379dffe1089407ef5de357c0e3 Mon Sep 17 00:00:00 2001
From: Henrik <Dwarfex@users.noreply.github.com>
Date: Wed, 10 Dec 2025 10:55:47 +0100
Subject: [PATCH 2/2] Upgrade actions/cache from v2 to v4

---
 .github/workflows/php.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/php.yml b/.github/workflows/php.yml
index 746978d..9857096 100644
--- a/.github/workflows/php.yml
+++ b/.github/workflows/php.yml
@@ -19,7 +19,7 @@ jobs:
 
     - name: Cache Composer packages
       id: composer-cache
-      uses: actions/cache@v2
+      uses: actions/cache@v4
       with:
         path: vendor
         key: ${{ runner.os }}-php-${{ hashFiles('**/composer.lock') }}