Merge pull request #1 from magento-ogre/MAGETWO-49572-composer-vulnerability

Kopylova,Olga(okopylova) · Kopylova,Olga(okopylova) · commit b53f7c8a0378 · 2016-03-08T14:50:51.000-06:00
MAGETWO-49572: Vulnerable package found (composer/composer (1.0.0-alpha10))
diff --git a/composer.json b/composer.json
@@ -2,14 +2,14 @@
   "name": "magento/composer",
   "description": "Magento composer library helps to instantiate Composer application and run composer commands.",
   "type": "library",
-  "version": "1.0.2",
+  "version": "1.0.3",
   "license": [
     "OSL-3.0",
     "AFL-3.0"
   ],
   "require": {
     "php": "~5.5.0|~5.6.0|~7.0.0",
-    "composer/composer": "1.0.0-alpha10",
+    "composer/composer": "1.0.0-beta1",
     "symfony/console": "~2.3 <2.7"
   },
   "require-dev": {
diff --git a/src/InfoCommand.php b/src/InfoCommand.php
@@ -53,10 +53,12 @@ public function __construct(MagentoComposerApplication $magentoComposerApplicati
      */
     public function run($package, $installed = false)
     {
+        $showAllPackages = !$installed;
         $commandParameters = [
             'command' => 'info',
             'package' => $package,
-            '-i' => $installed
+            '-i' => $installed,
+            '--all' => $showAllPackages,
         ];
 
         $result = [];
