mediawiki/extensions/EventBus has a dependency on ramsey/uuid for the generation of type 1 UUIDs (we do not seem to have anything to do this); Per https://www.mediawiki.org/wiki/Manual:External_libraries, I'm requesting a security review of ramsey/uuid.
See also:
- T116786: Integrate eventbus-based event production into MediaWiki
- https://gerrit.wikimedia.org/r/#/c/256575/ (mediawiki/vendor changeset)