Update the composer.lock file to avoid out-of-sync errors

[javiereguiluz]

This fixes #172

[Pierstoval]

Where did you find this behavior? In Composer itself?

[javiereguiluz]

I found it here: https://github.com/composer/composer/blob/69210d5bc130f8cc9f96f99582a041254d7b9833/src/Composer/Factory.php#L309 But to be sure I made an md5 of several composer.json files and they matched the values stored in composer.lock.

[stof]

@javiereguiluz reimplementing the composer hashing here has a drawback though: the logic will become much more complex once composer improves its hashing by hashing only the relevant informations (which would require you to update a second hash for the new API).
But anyway, I guess we can live with this solution for now. Nobody is currently working on improving the hash computation, so it won't be there soon AFAICT. So 👍 from me

[javiereguiluz]

@stof I agree with you. Let's merge this for now and if someday Composer changes the hashing algorithm, we'll match their implementation or drop this feature, whichever is easier for us.