ugh, composer.
There are 4 composer security advisories affecting our repositories.
Possibility to load a template outside a configured directory when using the filesystem loader
Possible sandbox bypass
Key/algorithm type confusion
Deserialization Gadget chain in Swift Mailer