Changes: - update composer.phar to latest stable (2.5.8) - rollback pinning indirect dependencies
- no longer requires the live download and execution of the composer package - compromising https://getcomposer.org/ could lead to RCE for new MISP installations during the installation - As reported by Trey Darley (@treyka)