Bump the dev-dependencies group across 1 directory with 6 updates

[dependabot]

Updates the requirements on ergebnis/composer-normalize, phpstan/phpstan, phpstan/phpstan-phpunit, phpstan/phpstan-strict-rules, shipmonk/composer-dependency-analyser and shipmonk/phpstan-rules to permit the latest version.
Updates ergebnis/composer-normalize to 2.43.0

Release notes

Sourced from ergebnis/composer-normalize's releases.

2.43.0

What's Changed

• Enhancement: Update composer/composer by @​localheinz in ergebnis/composer-normalize#1292
• Enhancement: Update schema.json by @​ergebnis-bot in ergebnis/composer-normalize#1312
• Fix: Update composer/composer by @​localheinz in ergebnis/composer-normalize#1351

Full Changelog: ergebnis/composer-normalize@2.42.0...2.43.0

Changelog

Sourced from ergebnis/composer-normalize's changelog.

[2.43.0][2.43.0]

For a full diff see [2.42.0...2.43.0][2.42.0...2.43.0].

Changed

• Updated schema.json (#1312), by [@​ergebnis-bot]

Fixed

• Updated composer/composer (#1349), by [@​localheinz]

[2.42.0][2.42.0]

For a full diff see [2.41.1...2.42.0][2.41.1...2.42.0].

Changed

• Required ergebnis/json:^1.2.0 (#1273), by [@​dependabot]
• Required ergebnis/json-printer:^3.5.0 (#1275), by [@​dependabot]
• Required ergebnis/json-normalizer:^4.5.0 (#1277), by [@​localheinz]
• Added support for PHP 8.0 (#1278), by [@​localheinz]
• Added support for PHP 7.4 (#1279), by [@​localheinz]

[2.41.1][2.41.1]

For a full diff see [2.41.0...2.41.1][2.41.0...2.41.1].

Fixed

• Required ergebnis/json-normalizer:^4.4.1 (#1243), by [@​dependabot]

[2.41.0][2.41.0]

For a full diff see [2.40.0...2.41.0][2.40.0...2.41.0].

Changed

• Required ergebnis/json-normalizer:^4.4.0 (#1241), by [@​dependabot]

Fixed

• Updated composer/composer (#1237), by [@​localheinz]

[2.40.0][2.40.0]

For a full diff see [2.39.0...2.40.0][2.39.0...2.40.0].

Changed

... (truncated)

Commits

• 4b46330 Enhancement: Prepare release
• 4ef17a7 Fix: Reference
• 9b60613 Merge pull request #1350 from ergebnis/dependabot/github_actions/ergebnis/dot...
• c894991 Merge pull request #1349 from ergebnis/dependabot/github_actions/codecov/code...
• cda099e github-actions(deps): Bump ergebnis/.github from 1.9.1 to 1.9.2
• b46306d github-actions(deps): Bump codecov/codecov-action from 4.4.0 to 4.5.0
• ab1f9f3 Merge pull request #1351 from ergebnis/fix/composer
• 0a28cd4 Fix: Update composer/composer
• 10b08ff Merge pull request #1348 from ergebnis/dependabot/github_actions/actions/chec...
• 06a570d github-actions(deps): Bump actions/checkout from 4.1.6 to 4.1.7
• Additional commits viewable in compare view

Updates phpstan/phpstan to 1.11.8

Release notes

Sourced from phpstan/phpstan's releases.

1.11.8

Bleeding edge 🔪

• Report useless return values of function calls like var_export without $return=true (#3225), #11320, thanks @​staabm!
• Check mixed in binary operator (#3231), #7538, #10440, thanks @​schlndh!
• Check vprintf/vsprintf arguments against placeholder count (#3126), thanks @​staabm!
• Check mixed in unary operator (#3253), thanks @​schlndh!
• Report "missing return" error closer to where the return is missing (phpstan/phpstan-src@04f8636)
• Stricter ++/-- operator check (#3255), thanks @​schlndh!
• Check preg_quote delimiter sanity (#3252), #11338, thanks @​staabm!

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

• Precise array shape for $matches from preg_match() improvements:
  • RegexArrayShapeMatcher - trailling groups are not optional when PREG_UNMATCHED_AS_NULL (#3219), #11311, thanks @​staabm!
  • Fix preg_match named capturing groups (#3228), #11323, thanks @​staabm!
  • RegexArrayShapeMatcher - Fix optional groups with PREG_UNMATCHED_AS_NULL (#3229), thanks @​staabm!
  • Allow overriding the PHP 7.2 support for PREG_UNMATCHED_AS_NULL (#3226), thanks @​Seldaek!
  • RegexArrayShapeMatcher - Fix PREG_UNMATCHED_AS_NULL with optional leading groups (#3234), #11331, thanks @​staabm!
  • RegexArrayShapeMatcher - Support preg_quote()'d patterns (#3233), #11332, thanks @​staabm!
  • RegexArrayShapeMatcher - Fix PREG_UNMATCHED_AS_NULL with top level alternation (#3238), thanks @​staabm!
  • RegexArrayShapeMatcher - More precise non-empty-string and numeric-string (#3249), thanks @​staabm!
  • Fix regex parsing by completing the grammar (#3244), thanks @​Seldaek!
  • RegexArrayShapeMatcher - (\d*) can be empty-string (#3257), thanks @​staabm!
• Add diagnose command to run DiagnoseExtensions (phpstan/phpstan-src@22c84d2)
• Diagnose extension: Info about extensions installed via extension-installer (phpstan/phpstan-src@db71f04)
• Diagnose extension - where is PHPStan running from (phpstan/phpstan-src@76464ee)
• Parallel scheduler becomes DiagnoseExtension (phpstan/phpstan-src@c7c9689)
• ResultCacheManager: output restore time in debug mode (#3224), thanks @​janedbal!
• Add hint as to what might be wrong when invalid identifiers are used (#3230), thanks @​Seldaek!
• Optimize array_map with many arrays (phpstan/phpstan-src@09fbc92), #11297
• Improved sprintf() inference (#3232), thanks @​staabm!
• Print elapsed analysis time with -v (#3239, #3242), thanks @​janedbal!
• More precise sprintf() format arg-based return type (#3192), #11248, #10493, thanks @​staabm!

Bugfixes 🐛

• Fix return type of round/ceil/floor in non strict type environment (#3223), #11319, thanks @​BackEndTea!

... (truncated)

Commits

• 6adbd11 PHPStan 1.11.8
• c4c0269 Updated PHPStan to commit c4c02698414934def38e0e1a4a002a2c139d9242
• c9a6d2e Updated PHPStan to commit c9a6d2e61edfad189a765df3c3a06674a10d4fb5
• 101467d Updated PHPStan to commit 101467d47d75cc793baaec89abf858342436e25a
• 7c2d8b4 Updated PHPStan to commit 7c2d8b45c30bc1a445be34d736b286f876805e4f
• 4a0ffab Updated PHPStan to commit 4a0ffab348f87b874d80ac7d8289213d419fb860
• fec3501 Update baselines
• 9db34df Updated PHPStan to commit 9db34dfbdffb2442ca21d6765b0fbfeb0154745d
• 2223dd9 Updated PHPStan to commit 2223dd9623522c223357c556189e7ec5280dba59
• a1e697b Updated PHPStan to commit a1e697b6949371b02bba5a2164ccc2ded020dd5e
• Additional commits viewable in compare view

Updates phpstan/phpstan-phpunit to 1.4.0

Release notes

Sourced from phpstan/phpstan-phpunit's releases.

1.4.0

• f3ea021 - Update lock-closed-issues.yml
• f93aec7 - Merge remote-tracking branch 'origin/1.3.x' into 1.4.x
• 77bdf96 - Update metcalfc/changelog-generator action to v4.3.1
• 6a1df9a - Update cbrgm/mastodon-github-action action to v2
• e95a58b - Update metcalfc/changelog-generator action to v4.2.0
• 77345df - Update dessant/lock-threads action to v5
• 99bb21e - Merge branch '1.3.x' into 1.4.x
• ac8ea99 - Update actions/checkout action to v4
• 529f300 - Merge branch '1.3.x' into 1.4.x
• 62e883e - Open 1.4.x-dev
• 97ec1d3 - Merge branch '1.3.x' into 1.4.x
• 4d99a7d - Require PHPStan 1.11
• 908e232 - Error identifiers

Commits

• f3ea021 Update lock-closed-issues.yml
• f93aec7 Merge remote-tracking branch 'origin/1.3.x' into 1.4.x
• 77bdf96 Update metcalfc/changelog-generator action to v4.3.1
• 6a1df9a Update cbrgm/mastodon-github-action action to v2
• e95a58b Update metcalfc/changelog-generator action to v4.2.0
• 77345df Update dessant/lock-threads action to v5
• 99bb21e Merge branch '1.3.x' into 1.4.x
• ac8ea99 Update actions/checkout action to v4
• 529f300 Merge branch '1.3.x' into 1.4.x
• 62e883e Open 1.4.x-dev
• Additional commits viewable in compare view

Updates phpstan/phpstan-strict-rules to 1.6.0

Release notes

Sourced from phpstan/phpstan-strict-rules's releases.

1.6.0

• 363f921 - Update lock-closed-issues.yml
• bd4fada - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• c7b4d28 - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 1a51fae - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• b5233d5 - Fix build
• d0dc2f0 - Update README.md
• 85fdc50 - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d0ba5f - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d33475 - Fix UselessCastRuleTest.
• 2bc3967 - Update metcalfc/changelog-generator action to v4.3.1
• 5981dc4 - Update cbrgm/mastodon-github-action action to v2
• 2090cfc - Update metcalfc/changelog-generator action to v4.2.0
• 1b125fb - Update dessant/lock-threads action to v5
• a3b0404 - Merge branch '1.5.x' into 1.6.x
• 3a67365 - Merge branch '1.5.x' into 1.6.x
• 50aab8d - Open 1.6.x-dev
• aeaa022 - Update actions/checkout action to v4
• b7edb14 - Rename abstract OperandInArithmeticIncrementOrDecrementRuleTest
• 88e714c - BooleanInBooleanAndRule, BooleanInBooleanOrRule - different identifier and description for logical operators
• 477f53a - Error identifiers
• 872bc91 - Removed some errors from RequireParentConstructCallRule - already reported by PHPStan core
• bd3aa8b - Modernized rules with generics and RuleErrorBuilder
• cca41e8 - Require PHPStan 1.11
• 5c143aa - Next-gen coding standard workflow
• a1891b4 - Update dependency slevomat/coding-standard to v8.12.0
• fa91928 - Update dependency slevomat/coding-standard to v8.11.1
• 1b9b85f - Update dependency slevomat/coding-standard to v8.11.0
• 35fda6c - Update dependency slevomat/coding-standard to v8.10.0
• ce264e3 - Update build-cs

Commits

• 363f921 Update lock-closed-issues.yml
• bd4fada Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• c7b4d28 Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 1a51fae Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• b5233d5 Fix build
• d0dc2f0 Update README.md
• 85fdc50 Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d0ba5f Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d33475 Fix UselessCastRuleTest.
• 2bc3967 Update metcalfc/changelog-generator action to v4.3.1
• Additional commits viewable in compare view

Updates shipmonk/composer-dependency-analyser to 1.6.1

Release notes

Sourced from shipmonk/composer-dependency-analyser's releases.

1.6.1

Fixes

• Fix PHP warning with no composer classloader (#150)

Commits

• 9252ee5 Fix PHP warning with no composer classloader (#150)
• 6bbe1d0 Support qualified names in global scope (#148)
• b63a9ac Fix detection of non-lowercase extension functions (#144)
• af14c65 exclude-from-classmap support (#140)
• 98bceac Analyser: more specific path has dev/prod mark priority (#142)
• 2a45e4e Bump the dev-dependencies group with 3 updates (#139)
• bb93bfd Bump the dev-dependencies group with 3 updates (#135)
• d9ddcef e2e: add tomasvotruba/unused-public (#134)
• 76a81d2 CI: run checks with PHP 8.3 (#133)
• 00b5023 Add balikobot to e2e (#132)
• Additional commits viewable in compare view

Updates shipmonk/phpstan-rules to 3.1.0

Release notes

Sourced from shipmonk/phpstan-rules's releases.

3.1.0

New features:

• forbidUnsafeArrayKey: allow only int|string in array keys (deny null, bool, float etc) (#254)

Commits

• 8ace7ea ForbidUnsafeArrayKeyRule (#254)
• e517483 Bump the dev-dependencies group with 2 updates (#253)
• 25439e1 Bump phpstan/phpstan from 1.11.3 to 1.11.5 in the prod-dependencies group (#252)
• 7088eff RuleTestCase: fix order of errors for long testcases (#251)
• d8584cc Bump phpstan/phpstan from 1.11.1 to 1.11.3 in the prod-dependencies group (#250)
• af1a026 Bump other phpstan libs (#249)
• c6d2798 forbidCheckedExceptionInCallable: add 🇺🇸 slides link (#248)
• 1f55180 forbidCheckedExceptionInCallable: remove limitation (#247)
• 04cf295 Deny @phpstan-ignore-line in favour of @phpstan-ignore (#246)
• 8ae5cb4 Enable reportPossiblyNonexistentArrayOffset (#245)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.