symfony/yaml v7.4.12

on PHP Packagist

Changelog (v7.4.11...v7.4.12)

• security #cve-2026-45305 Harden the Parser::cleanup() regexes against catastrophic backtracking (@nicolas-grekas)
• security #cve-2026-45304 Bound collection-alias resolution in the parser (@nicolas-grekas)
• security #cve-2026-45133 Bound recursion depth in the parser (@nicolas-grekas)