From bf01f3afe40a1512e71193b0d0d94dae0d8d1607 Mon Sep 17 00:00:00 2001
From: Raj Siva-Rajah <5361908+binaryfire@users.noreply.github.com>
Date: Thu, 5 Feb 2026 11:49:08 +0000
Subject: [PATCH] Ignore PHPUnit security advisory and add testing to
 .gitignore

- Add audit ignore for PKSA-z3gr-8qht-p93v (CVE-2026-24765) to allow
  composer install on fresh clones while locked to PHPUnit 10.5.45
- Add 'testing' to .gitignore (created by local CI database tests)
---
 .gitignore    | 1 +
 composer.json | 3 +++
 2 files changed, 4 insertions(+)

diff --git a/.gitignore b/.gitignore
index 453eb297c..313a41938 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,6 +2,7 @@
 /.phpunit.cache
 /vendor
 composer.lock
+testing
 /phpunit.xml
 .phpunit.result.cache
 .env
diff --git a/composer.json b/composer.json
index 05e0e614d..bf1832b32 100644
--- a/composer.json
+++ b/composer.json
@@ -227,6 +227,9 @@
         "typesense/typesense-php": "^5.2"
     },
     "config": {
+        "audit": {
+            "ignore": ["PKSA-z3gr-8qht-p93v"]
+        },
         "sort-packages": true
     },
     "extra": {