From 42208dd62105b0994829b4a4dde6921a05c2711d Mon Sep 17 00:00:00 2001
From: Ishan Vyas <ishan@passbolt.com>
Date: Fri, 11 Oct 2024 10:46:03 +0530
Subject: [PATCH] Bump minimum twig version to v3.11 to fix Possible sandbox
 bypass security vulnerability

Fixes CVE-2024-45411
---
 composer.json | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/composer.json b/composer.json
index 4bef32b..3c3640a 100644
--- a/composer.json
+++ b/composer.json
@@ -25,7 +25,7 @@
         "cakephp/cakephp": "^4.0",
         "jasny/twig-extensions": "^1.3",
         "twig/markdown-extra": "^3.0",
-        "twig/twig": "^3.0"
+        "twig/twig": "^3.11.0"
     },
     "require-dev": {
         "cakephp/cakephp-codesniffer": "^4.0",