Bump symfony/yaml from 3.4.47 to 5.4.52 in /core

[dependabot]

Bumps symfony/yaml from 3.4.47 to 5.4.52.

Release notes

Sourced from symfony/yaml's releases.

v5.4.52

Changelog (symfony/yaml@v5.4.44...v5.4.52)

• security #cve-2026-45305 Harden the Parser::cleanup() regexes against catastrophic backtracking (@​nicolas-grekas)
• security #cve-2026-45304 Bound collection-alias resolution in the parser (@​nicolas-grekas)
• security #cve-2026-45133 Bound recursion depth in the parser (@​nicolas-grekas)

v5.4.45

Changelog (symfony/yaml@v5.4.44...v5.4.45)

• no significant changes

v5.4.44

Changelog (symfony/yaml@v5.4.43...v5.4.44)

• bug symfony/symfony#58279 [Yaml] parse empty sequence elements as null (@​xabbuh)

v5.4.43

Changelog (symfony/yaml@v5.4.42...v5.4.43)

• bug symfony/symfony#57968 [Yaml] 🐛 throw ParseException on invalid date (@​homersimpsons)

v5.4.40

Changelog (symfony/yaml@v5.4.39...v5.4.40)

• no significant changes

v5.4.39

Changelog (symfony/yaml@v5.4.38...v5.4.39)

• bug symfony/symfony#54706 [Yaml] call substr() with integer offsets (@​xabbuh)

v5.4.35

Changelog (symfony/yaml@v5.4.34...v5.4.35)

• no significant changes

v5.4.31

Changelog (symfony/yaml@v5.4.30...v5.4.31)

• bug symfony/symfony#52443 [Yaml] Fix uid binary parsing (@​mRoca)
• bug symfony/symfony#52408 [Yaml] Fix block scalar array parsing (@​NickSdot)

v5.4.30

Changelog (symfony/yaml@v5.4.29...v5.4.30)

• no significant changes

v5.4.23

Changelog (symfony/yaml@v5.4.22...v5.4.23)

... (truncated)

Changelog

Sourced from symfony/yaml's changelog.

CHANGELOG

8.0

• Remove support for parsing duplicate mapping keys whose value is null

7.3

• Add compact nested mapping support by using the Yaml::DUMP_COMPACT_NESTED_MAPPING flag
• Add the Yaml::DUMP_FORCE_DOUBLE_QUOTES_ON_VALUES flag to enforce double quotes around string values

7.2

• Deprecate parsing duplicate mapping keys whose value is null
• Add support for dumping null as an empty value by using the Yaml::DUMP_NULL_AS_EMPTY flag

7.1

• Add support for getting all the enum cases with !php/enum Foo

7.0

• Remove the !php/const: tag, use !php/const instead (without the colon)

6.3

• Add support to dump int keys as strings by using the Yaml::DUMP_NUMERIC_KEY_AS_STRING flag

6.2

• Add support for !php/enum and !php/enum *->value
• Deprecate the !php/const: tag in key which will be replaced by the !php/const tag (without the colon) since 3.4

6.1

• In cases where it will likely improve readability, strings containing single quotes will be double-quoted

5.4

• Add a $maxNestingLevel argument to Parser::__construct(), Yaml::parse() and Yaml::parseFile() to bound recursion depth (default 128)

... (truncated)

Commits

• b0b2705 [Yaml] Harden the Parser::cleanup() regexes against catastrophic backtracking
• 5a351ff [Yaml] Bound collection-alias resolution in the parser
• b02ba66 [Yaml] Bound recursion depth in the parser
• a454d47 Add PR template and auto-close PR on subtree split repositories
• 7025b96 parse empty sequence elements as null
• 62f96e1 🐛 throw ParseException on invalid date
• 81cad0c Revert "minor #54653 Auto-close PRs on subtree-splits (nicolas-grekas)"
• bc780e1 call substr() with integer offsets
• a38ba0b Auto-close PRs on subtree-splits
• e78db7f Apply php-cs-fixer fix --rules nullable_type_declaration_for_default_null_value
• Additional commits viewable in compare view