Laravel 12.46.0 Shift

[lancepioch]

This pull request includes updates for the recent minor version release of Laravel as well as bumps your package dependencies. You may review the full list of changes in the Laravel Release Notes, or highlighted changes and tips in the weekly Shifty Bits newsletter.

Before merging, you need to:

• Checkout the shift-ci-v12.46.0 branch
• Review all pull request comments for additional changes
• Run composer update
• Thoroughly test your application (no tests?, no CI?)

[coderabbitai]

📝 Walkthrough

Walkthrough

The Laravel framework version constraint in composer.json has been updated from ^12.37 to ^12.46, expanding the allowed version range to include more recent patch and minor versions of Laravel 12.

Changes

Cohort / File(s)	Summary
Dependency Version Update composer.json	Updated laravel/framework requirement from ^12.37 to ^12.46 in the require section

Possibly related PRs

• Laravel 12.37.0 Shift #1864: Also bumps laravel/framework version constraint in composer.json as part of a dependency update sequence.
• Laravel 12.23.1 Shift #1604: Modifies the same laravel/framework dependency declaration with a version constraint update.
• Laravel 12.31.1 Shift #1739: Updates laravel/framework version constraint in composer.json targeting a different version.

🚥 Pre-merge checks | ✅ 3

✅ Passed checks (3 passed)

Check name	Status	Explanation
Title check	✅ Passed	The title 'Laravel 12.46.0 Shift' directly describes the main change: updating Laravel to version 12.46.0, which matches the composer.json dependency bump from ^12.37 to ^12.46.
Description check	✅ Passed	The description is directly related to the changeset, explaining the Laravel 12.46.0 update and providing context about the release notes, pre-merge steps, and testing requirements.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 1

🤖 Fix all issues with AI agents

In @composer.json:
- Line 18: The composer.json dependency constraint for the package
"laravel/framework": "^12.46" is invalid because no 12.46 release exists; update
that constraint to a valid release (e.g., change the "laravel/framework" version
string to "^12.2" or the intended minor version) and then run composer validate
and composer update to ensure the lockfile and dependencies resolve correctly.

📜 Review details

Configuration used: Repository UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 6ebeb40 and 2c17909.

⛔ Files ignored due to path filters (1)

• composer.lock is excluded by !**/*.lock

📒 Files selected for processing (1)

• composer.json

[coderabbitai]

⚠️ Potential issue | 🔴 Critical

🧩 Analysis chain

🌐 Web query:

Laravel 12.46.0 release notes breaking changes

💡 Result:

I couldn't find any Laravel release tagged 12.46.0. Laravel's docs state that minor and patch releases should never contain breaking changes, and the 12.x release/upgrade notes list the (documented) breaking/minimal changes for upgrading to 12.0. See Laravel release notes and upgrade guide. [1][2]

If you meant a different tag (for example 12.4.6, 12.46—a different major, or a package release), tell me the exact version or paste the release link and I’ll fetch the release notes and highlight any breaking changes.

Sources:

• Laravel release notes (states minor/patch releases should not contain breaking changes). [1]
• Laravel 12 upgrade guide (documents breaking/minimal changes when moving to 12.x). [2]

References:
[1] https://laravel.com/docs/12.x/releases. (laravel.com)
[2] https://laravel.com/docs/12.x/upgrade. (laravel.com)

Citations:

• 1: https://laravel.com/docs/12.x/releases?utm_source=openai
• 2: https://laravel.com/docs/12.x/upgrade?utm_source=openai

---

🌐 Web query:

Laravel 12.46 security advisories vulnerabilities

💡 Result:

I searched current advisories. Short summary:

• I found no public security advisory specifically referencing "12.46". (No results for a 12.46-specific advisory.) [1][2]
• Known/important Laravel advisories that may be relevant:
  • Environment-manipulation via query string (CVE-2024-52301) — high severity; patched in specific older releases (see advisory). [3][4]
  • Reflected XSS in debug-mode error page (CVE-2024-13918 / GHSA-546h-56qp-8jmw) — affected 11.9.0–11.35.1; patched in 11.36.0. [5]
  • Improper-neutralization / file validation bypass disclosed March 2025 (SNYK/CVE entry) — affects versions <11.44.1 and >=12.0.0,<12.1.1; upgrade to 12.1.1+ or 11.44.1+ recommended. [6]
  • The Laravel framework security advisories list and timeline are maintained in the repo. Check it for newly published advisories. [2]

Actionable next steps:

• If you run composer-managed Laravel apps, run composer update (or inspect composer.lock) to ensure laravel/framework is at the latest patch for your 12.x line; upgrade to the newest 12.x patch if available. Verify patched versions in the Laravel releases/changelog and the framework security advisories before deploying. [1][2][6]
• Subscribe/watch the Laravel framework security advisories (GitHub) and Snyk/NVD for new CVEs and patches. [2][3][6]

Sources:
[1] Laravel releases & support (docs).
[2] laravel/framework — Security Advisories (GitHub).
[3] NVD / CVE-2024-52301.
[4] CVE details / vendor references.
[5] GHSA / CVE-2024-13918 (GitHub Advisory).
[6] Snyk advisory (Improper Neutralization / CVE-2025-27515).

Would you like me to check the exact laravel/framework version in your composer.lock and tell whether 12.46 (if present) is vulnerable?

---

🌐 Web query:

Laravel 12 latest version releases 12.0 12.1 12.2

💡 Result:

Laravel 12 release dates:

• 12.0 — February 24, 2025. [1]
• 12.1 — July 8, 2025. [2]
• 12.2 — July 22, 2025. [2][3]

Sources: [1] Laravel News — Laravel 12 release date; [2] VersionLog — Laravel 12.0 release history (lists 12.1 & 12.2 dates); [3] Laravel News — Laravel 12.2 release notes.

---

🌐 Web query:

Laravel framework version history 12.x releases

💡 Result:

Laravel 12 — summary and release history

• Initial release: Laravel 12.0.0 — February 24, 2025. [1]
• Release focus: minimal breaking changes; new application starter kits (React, Vue, Livewire) and dependency updates. [1][3]
• Notable 12.x changelog items (examples): new @hasstack Blade directive, route:list --middleware filter, WithCachedRoutes testing trait, Factory::insert(), Str/Stringable::ucwords, queue:work --verbose, Uri implements JsonSerializable, doesntStartWith()/doesntEndWith() — full changelog contains detailed per-patch entries. [2][3]

For the complete list of 12.x patch/minor releases and individual change entries, see the official Laravel 12.x release notes and changelog. [1][2]

Sources:
[1] Laravel — Release Notes (12.x).
[2] Laravel — Changelog (12.x).
[3] Laravel News — “Laravel 12 release date” / coverage.

---

Laravel version 12.46.0 does not exist—Composer dependency will fail to resolve.

Laravel's latest 12.x releases are 12.0 (Feb 2025), 12.1 (Jul 2025), and 12.2 (Jul 2025). The constraint "^12.46" requires Laravel 12.46 or higher, which does not exist. Update to a valid version such as "^12.2" (current latest) or the intended minor version.

🤖 Prompt for AI Agents

In @composer.json at line 18, The composer.json dependency constraint for the
package "laravel/framework": "^12.46" is invalid because no 12.46 release
exists; update that constraint to a valid release (e.g., change the
"laravel/framework" version string to "^12.2" or the intended minor version) and
then run composer validate and composer update to ensure the lockfile and
dependencies resolve correctly.

[rmartinoscar]

Please bump this to v2.2.1

Suggested change

	"gboquizosanchez/filament-log-viewer": "^2.1",
	"gboquizosanchez/filament-log-viewer": "^2.2",