Problem/Motivation
In our composer we use ~ often. In the composer doc is says that the caret:
is the recommended operator for maximum interoperability when writing library code.
Furthermore when there is a patch release for a dependency which we'd like to help ensure users using composer to manage their project's dependencies get this will help them. See #2768953: Prevent insecure Guzzle from being installed when using composer to manager your project dependencies.
Proposed resolution
Change composer dependency versions to ^1.2.3 style using the caret. This would also allow for users managing their own dependencies to update to later minor versions when needed (outside of core releases).
Remaining tasks
- Decide if we want to adopt ^1.2.3 style versioning
- Patch composer.json to adjust
User interface changes
n/a
API changes
n/a
Data model changes
n/a