[Maggento V2.3.4 composer]Higher matching version 4.0.1 of mageplaza/module-same-order-number was found in public repository packagist.org
than 1.0.3 in private https://repo.magento.com. Public package might’ve been taken over by a mal
icious entity,

安装Marketplace 的mageplaza/module-same-order-number

原因是 mageplaza/module-same-order-number 在packgist 版本是4.0.1

官方解释是防止依赖混淆攻击。

解决方法：

修改根目录下的 composer.json

"type": "composer",
"url": "https://repo.magento.com/",
"canonical": false   // add this line

此站点使用Akismet来减少垃圾评论。了解我们如何处理您的评论数据。