Bump composer/composer from 2.1.8 to 2.1.9

[dependabot]

Bumps composer/composer from 2.1.8 to 2.1.9.

Release notes

Sourced from composer/composer's releases.

2.1.9

• Security: Fixed command injection vulnerability on Windows (GHSA-frqg-7g38-6gcf / CVE-2021-41116)
• Fixed classmap parsing with a new class parser which does not rely on regexes anymore (#10107)
• Fixed inline git credentials showing up in output in some conditions (#10115)
• Fixed support for running updates while offline as long as the cache contains enough information (#10116)
• Fixed show --all foo/bar which as of 2.0.0 was not showing all versions anymore but only the installed one (#10095)
• Fixed VCS repos ignoring some versions silently when the API rate limit is reached (#10132)
• Fixed CA bundle to remove the expired Let's Encrypt root CA

Changelog

Sourced from composer/composer's changelog.

[2.1.9] 2021-10-05

• Security: Fixed command injection vulnerability on Windows (GHSA-frqg-7g38-6gcf / CVE-2021-41116)
• Fixed classmap parsing with a new class parser which does not rely on regexes anymore (#10107)
• Fixed inline git credentials showing up in output in some conditions (#10115)
• Fixed support for running updates while offline as long as the cache contains enough information (#10116)
• Fixed show --all foo/bar which as of 2.0.0 was not showing all versions anymore but only the installed one (#10095)
• Fixed VCS repos ignoring some versions silently when the API rate limit is reached (#10132)
• Fixed CA bundle to remove the expired Let's Encrypt root CA

Commits

• e558c88 Release 2.1.9
• cb1e248 Fix type annotation
• 2f3273b Fix changelog
• 18e2497 Merge branch '1.10'
• b67ceb8 Prepare changelog
• ca5e2f8 Fix escaping issues on Windows which could lead to command injection, fixes G...
• b3eebeb Merge pull request from GHSA-frqg-7g38-6gcf
• 532c6e7 Fix show --all showing only the installed version if the package is installed...
• a7963b7 Fix ComposerRepository handling of offline state to allow resolution as long ...
• edccad4 VcsRepository: do not continue when receiving 429 rate limit exception (#10132)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

🏰 Composer Production Dependency changes 🏰

Prod Packages	Operation	Base	Target	Link
composer/ca-bundle	Upgraded	1.2.10	1.2.11	Compare
composer/composer	Upgraded	2.1.8	2.1.9	Compare