Skip to content

[UPMERGE] 4.1 -> 5.0 #2948

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
github-actions wants to merge 25 commits into
base: 5.0
Choose a base branch
from
Open

[UPMERGE] 4.1 -> 5.0 #2948

github-actions wants to merge 25 commits into from

Conversation

@github-actions
Copy link

@github-actions github-actions bot commented Jan 21, 2026

This PR has been generated automatically.

Remember! The upmerge should always be merged with using Merge pull request button.

In case of conflicts, please resolve them manually with usign the following commands:

git fetch upstream
gh pr checkout <this-pr-number>
git merge upstream/5.0 -m "Resolve conflicts between 4.1 and 5.0"

dpfaffenbauer and others added 24 commits January 20, 2026 08:04
@dpfaffenbauer
[Release] 4.1.9
16c4858
@dpfaffenbauer
Merge pull request #2947 from dpfaffenbauer/release/4.1.9
2b26129 
[Release] 4.1.9
Initial plan
0f1e896
Initial plan
ddc0b5a
Initial plan
ebc277a
Initial plan
c94df7f
@dpfaffenbauer
Add coreshop:setup:states CLI command for creating states/regions
dc266d5 
Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Address code review feedback: improve exception handling and consistency
d665cad 
Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
Initial plan
1527ac8
@dpfaffenbauer
feat: Add multi-select drag & drop support for condition lists
1f01b82 
Modified objectMultihref.js to iterate through all selected records in
data.records instead of only processing the first record. This enables
users to select multiple data objects (products, categories, customers,
etc.) and drag them all at once into condition lists.

Fixes the issue where each data object had to be added individually to
condition lists in cart price rules, product price rules, shipping rules,
and other rule configurations.

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Add auto-refresh feature and rotate queue names in MessengerBundle UI
8953519 
Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Fix information exposure vulnerability in OrderInvoiceController and …
fa143d9 
…OrderShipmentController

Replace exception messages and stack traces in client responses with generic error
messages. Detailed error information is now logged server-side using LoggerInterface.

Fixes security vulnerability where internal implementation details were exposed to clients.

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Return HTTP 500 status code on error in renderAction methods
ac3b8a8 
Address code review feedback to return appropriate error status code
instead of HTTP 200 when an error occurs during PDF rendering.

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
docs: update Menu Bundle JavaScript documentation to use modern event…
24fb7c0 
… pattern

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
refactor: Use for-of loops instead of traditional for loops
dbfac39 
Address code review feedback to use for-of loops for simpler iteration
over data.records arrays in both onNodeOver and onNodeDrop handlers.

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Add 'Copilot' to the allowlist in CLA check
4db8fcd
@dpfaffenbauer
Change chart labels to trim with ellipsis and show full name on bar h…
f58485a 
…over

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Merge pull request #2966 from coreshop/copilot/update-menu-bundle-docs
cf30fff 
Fix outdated Menu Bundle docs for ExtJs event handling
@dpfaffenbauer
Merge pull request #2960 from coreshop/copilot/add-drag-and-drop-supp…
1c7cd94 
…ort-again

Add multi-select drag & drop support for objectMultihref condition lists
@dpfaffenbauer
Remove logging and simplify error response in renderAction methods
de3345e 
Address review feedback to remove logging calls and simplify error responses
while still preventing information exposure.

Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Show queue name in label for bars with 0 messages
a40e747 
Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Merge pull request #2959 from coreshop/copilot/add-cli-command-for-ma…
0ba0672 
…rkets

Add CLI command for setting up states/regions for additional countries
@dpfaffenbauer
Revert chart to simple design with tooltip on bar hover
1b15e2c 
Co-authored-by: dpfaffenbauer <5981845+dpfaffenbauer@users.noreply.github.com>
@dpfaffenbauer
Merge pull request #2965 from coreshop/copilot/optimize-messenger-ui
d7a1385 
[MessengerBundle] Add auto-refresh and chart tooltip
@github-actions
Copy link
Author

github-actions bot commented Jan 30, 2026


Thank you for your submission, we really appreciate it. Like many open-source projects, we ask that you all sign our Contributor License Agreement before we can accept your contribution. You can sign the CLA by just posting a Pull Request Comment same as the below format.

I have read the CLA Document and I hereby sign the CLA

1 out of 2 committers have signed the CLA.
✅ (dpfaffenbauer)[https://github.com/dpfaffenbauer]
❌ @Copilot
You can retrigger this bot by commenting recheck in this Pull Request. Posted by the CLA Assistant Lite bot.

@dpfaffenbauer
Merge pull request #2962 from coreshop/copilot/fix-information-exposu…
8af585b 
…re-issue

Fix information exposure in OrderInvoiceController and OrderShipmentController
@sonarqubecloud
Copy link

sonarqubecloud bot commented Jan 31, 2026

Quality Gate Passed Quality Gate passed

Issues
6 New issues
3 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dpfaffenbauer dpfaffenbauer dpfaffenbauer approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@dpfaffenbauer