Skip to content

composer (4.x)(deps-dev): update phpstan/phpstan requirement from ^2.1.12 to ^2.1.13 #554

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Apr 28, 2025
Merged

composer (4.x)(deps-dev): update phpstan/phpstan requirement from ^2.1.12 to ^2.1.13 #554

merged 1 commit into from
Apr 28, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 28, 2025
edited
Loading

Updates the requirements on phpstan/phpstan to permit the latest version.

Release notes

Sourced from phpstan/phpstan's releases.

2.1.13

Major new features 🚀

Bleeding edge 🔪

  • Report @internal symbols usage from outside their top namespace, #1178

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

  • Improve return type of array_splice() (#3947), thanks @​herndlm!
  • Handle preserve_keys in array_slice() for normal arrays (#3946), #12880, thanks @​herndlm!
  • Improve ConstantArrayType::sliceArray() with non constant integer args (#3949), thanks @​herndlm!
  • TableErrorFormatter: visually differentiate phpstan assertion errors from rule errors (#3951), thanks @​staabm!

Bugfixes 🐛

Internals 🔍

... (truncated)

Commits
  • e55e03e PHPStan 2.1.13
  • 95d365e Updated PHPStan to commit 95d365e526e230f5a8c5027084bc76f55912dc46
  • 587908e Update errors identifiers
  • ecfc541 Updated PHPStan to commit ecfc5417bb2bd2f9f478f0c005b10ab1937cf149
  • 4e9aadb Update errors identifiers
  • e14e527 Updated PHPStan to commit e14e527fbfa34a1095174e9fe3736c50fc969166
  • 8134364 Update errors identifiers
  • 95f54cd Updated PHPStan to commit 95f54cd1f99e975cff5059eda1cb4394a593d52b
  • d2b7e81 Updated PHPStan to commit d2b7e81b1791a9c2fa59f230599badcb763ad265
  • 027fc75 Update errors identifiers
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested a review from mimmi20 April 28, 2025 02:39
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Apr 28, 2025
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Apr 28, 2025
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
composer/phpstan/phpstan >= 2.1.13, < 3.0.0 🟢 5.7
Details
CheckScoreReason
Dangerous-Workflow⚠️ -1no workflows found
Code-Review⚠️ 1Found 4/29 approved changesets -- score normalized to 1
Packaging⚠️ -1packaging workflow not detected
Maintained🟢 1030 commit(s) and 17 issue activity found in the last 90 days -- score normalized to 10
Token-Permissions⚠️ -1No tokens found
Binary-Artifacts🟢 10no binaries found in the repo
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Vulnerabilities🟢 100 existing vulnerabilities detected
Fuzzing⚠️ 0project is not fuzzed
License🟢 10license file detected
Pinned-Dependencies⚠️ -1no dependencies found
Signed-Releases🟢 85 out of the last 5 releases have a total of 5 signed artifacts.
Security-Policy🟢 10security policy file detected
Branch-Protection⚠️ 0branch protection not enabled on development/release branches
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0

Scanned Files

  • composer.json

@github-actions github-actions bot enabled auto-merge April 28, 2025 02:41
@dependabot
composer (4.x)(deps-dev): update phpstan/phpstan requirement
65b9ea4 
Updates the requirements on [phpstan/phpstan](https://github.com/phpstan/phpstan) to permit the latest version.
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/2.1.x/CHANGELOG.md)
- [Commits](phpstan/phpstan@2.1.12...2.1.13)

---
updated-dependencies:
- dependency-name: phpstan/phpstan
  dependency-version: 2.1.13
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/composer/4.x/phpstan/phpstan-tw-2.1.13 branch from 74dd627 to 65b9ea4 Compare April 28, 2025 10:02
@codecov Codecov
Copy link

codecov bot commented Apr 28, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 100.00%. Comparing base (672fd4c) to head (65b9ea4).
Report is 3 commits behind head on 4.x.

✅ All tests successful. No failed tests found.

Additional details and impacted files

Impacted file tree graph

@@             Coverage Diff             @@
##                 4.x      #554   +/-   ##
===========================================
  Coverage     100.00%   100.00%           
  Complexity        43        43           
===========================================
  Files              4         4           
  Lines            234       234           
===========================================
  Hits             234       234
Flag Coverage Δ
php-8.3 100.00% <ø> (ø)
phpunit 100.00% <ø> (ø)
ubuntu-latest 100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

@github-actions github-actions bot merged commit 7c8b6ac into 4.x Apr 28, 2025
79 checks passed
@github-actions github-actions bot deleted the dependabot/composer/4.x/phpstan/phpstan-tw-2.1.13 branch April 28, 2025 13:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@mimmi20 mimmi20 Awaiting requested review from mimmi20 mimmi20 is a code owner

Assignees

@mimmi20 mimmi20

Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@mimmi20