composer(deps-dev): bump the dependencies group across 1 directory with 3 updates

[dependabot]

Updates the requirements on ergebnis/composer-normalize, phpstan/phpstan and squizlabs/php_codesniffer to permit the latest version.
Updates ergebnis/composer-normalize to 2.43.0

Release notes

Sourced from ergebnis/composer-normalize's releases.

2.43.0

What's Changed

• Enhancement: Update composer/composer by @​localheinz in ergebnis/composer-normalize#1292
• Enhancement: Update schema.json by @​ergebnis-bot in ergebnis/composer-normalize#1312
• Fix: Update composer/composer by @​localheinz in ergebnis/composer-normalize#1351

Full Changelog: ergebnis/composer-normalize@2.42.0...2.43.0

Changelog

Sourced from ergebnis/composer-normalize's changelog.

[2.43.0][2.43.0]

For a full diff see [2.42.0...2.43.0][2.42.0...2.43.0].

Changed

• Updated schema.json (#1312), by [@​ergebnis-bot]

Fixed

• Updated composer/composer (#1349), by [@​localheinz]

[2.42.0][2.42.0]

For a full diff see [2.41.1...2.42.0][2.41.1...2.42.0].

Changed

• Required ergebnis/json:^1.2.0 (#1273), by [@​dependabot]
• Required ergebnis/json-printer:^3.5.0 (#1275), by [@​dependabot]
• Required ergebnis/json-normalizer:^4.5.0 (#1277), by [@​localheinz]
• Added support for PHP 8.0 (#1278), by [@​localheinz]
• Added support for PHP 7.4 (#1279), by [@​localheinz]

[2.41.1][2.41.1]

For a full diff see [2.41.0...2.41.1][2.41.0...2.41.1].

Fixed

• Required ergebnis/json-normalizer:^4.4.1 (#1243), by [@​dependabot]

[2.41.0][2.41.0]

For a full diff see [2.40.0...2.41.0][2.40.0...2.41.0].

Changed

• Required ergebnis/json-normalizer:^4.4.0 (#1241), by [@​dependabot]

Fixed

• Updated composer/composer (#1237), by [@​localheinz]

[2.40.0][2.40.0]

For a full diff see [2.39.0...2.40.0][2.39.0...2.40.0].

Changed

... (truncated)

Commits

• 4b46330 Enhancement: Prepare release
• 4ef17a7 Fix: Reference
• 9b60613 Merge pull request #1350 from ergebnis/dependabot/github_actions/ergebnis/dot...
• c894991 Merge pull request #1349 from ergebnis/dependabot/github_actions/codecov/code...
• cda099e github-actions(deps): Bump ergebnis/.github from 1.9.1 to 1.9.2
• b46306d github-actions(deps): Bump codecov/codecov-action from 4.4.0 to 4.5.0
• ab1f9f3 Merge pull request #1351 from ergebnis/fix/composer
• 0a28cd4 Fix: Update composer/composer
• 10b08ff Merge pull request #1348 from ergebnis/dependabot/github_actions/actions/chec...
• 06a570d github-actions(deps): Bump actions/checkout from 4.1.6 to 4.1.7
• Additional commits viewable in compare view

Updates phpstan/phpstan to 1.11.5

Release notes

Sourced from phpstan/phpstan's releases.

1.11.5

Bleeding edge 🔪

• Check array functions which require stringish values (#3132), #11141, #5848, #3694, #11111, thanks @​schlndh!

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

• When internal errors occur, do not show other reported errors (phpstan/phpstan-src@aa92113)
  • It's important to first solve internal errors before seeing other reported errors
  • Inspired by Result Cache work locally but not in CI phpstan/phpstan#11107 (ReviewDog was eating up important errors)
• Show internal errors nicely in PHPStan Pro

Bugfixes 🐛

• Fix bug in get_debug_type() DynamicFunctionReturnTypeExtension (#3128), thanks @​patrickkusebauch!
• Include path when counting errors ignored by identifier (#3154), #11177, thanks @​pilif!
• Implement bit shift operation on integers and unions (#3145), thanks @​thg2k!
• Fix division type result with even integer range (#3152), thanks @​thg2k!
• Solve identical comparison bug in call-site variance (#3153), #11161, #10697, thanks @​VincentLanglet!

Function signature fixes 🤖

• gnupg_init() options parameter is optional (#3129), thanks @​yphoenix!
• Update outdated RedisCluster::__construct signature (#3130), #11158, thanks @​wolfgangzwiauer!
• Improve image related functions signature (#3127), thanks @​thg2k!
• Update/fix ext-amqp signatures (#3139), thanks @​ben-challis!
• fix AMQPQueue::unbind() routingKey type (#3143), thanks @​ben-challis!
• Add parameter definitions to AMQPQueue::consume() callback (#3144), #9445, thanks @​ben-challis!
• Add int ranges to AMQP typings (#3146), thanks @​ben-challis!
• Various fixes to the return signature of IntlDateFormatter methods (#3149), thanks @​chosten!
• Fix Exception::getTrace() return type (phpstan/phpstan-src@492cd89)
• fix posix_getpwuid (#3157), thanks @​pistej!

Internals 🔍

• Regression test (#3136), thanks @​staabm!

... (truncated)

Commits

• 490f0ae PHPStan 1.11.5
• 2546955 Update errors identifiers
• 01e5828 Updated PHPStan to commit 01e5828ef4dd581732c087c3524073c469173069
• 7d9800c Updated PHPStan to commit 7d9800c2241344556731eb7f17fd6b8564dba43c
• 71534f1 Fix
• 98476c3 Update result-cache.md
• 1cb07bd Update errors identifiers
• 108277a Updated PHPStan to commit 108277a6348de38eaaeb6a5bdb89f83dd775fc9c
• 1711429 Updated PHPStan to commit 1711429c1ba2b30ce63ae6f8eff763758accc4c1
• c45cade Bump braces from 3.0.2 to 3.0.3 in /website
• Additional commits viewable in compare view

Updates squizlabs/php_codesniffer to 3.10.1

Release notes

Sourced from squizlabs/php_codesniffer's releases.

3.10.1 - 2024-05-22

Added

• Documentation for the following sniffs:
  • Generic.Commenting.DocComment
  • Thanks to Rodrigo Primo for the patch.

Changed

• The following have received efficiency improvements:
  • Type handling in the PHP Tokenizer
  • Thanks to Juliette Reinders Folmer for the patch.
• Various housekeeping, including improvements to the tests and documentation.
  • Thanks to Juliette Reinders Folmer for their contributions.

Fixed

• Fixed bug #110, #437, #475: File::findStartOfStatement(): the start of statement/expression determination for tokens in parentheses/short array brackets/others scopes, nested within match expressions, was incorrect in most cases. The trickle down effect of the bug fixes made to the File::findStartOfStatement() method, is that the Generic.WhiteSpace.ScopeIndent and the PEAR.WhiteSpace.ScopeIndent sniffs should now be able to correctly determine and fix the indent for match expressions containing nested expressions. These fixes also fix an issue with the Squiz.Arrays.ArrayDeclaration sniff and possibly other, unreported bugs.
  • Thanks to Juliette Reinders Folmer for the patch
• Fixed bug #504: The tokenizer could inadvertently mistake the last parameter in a function call using named arguments for a DNF type.
  • Thanks to Juliette Reinders Folmer for the patch
• Fixed bug #508: Tokenizer/PHP: extra hardening against handling parse errors in the type handling layer.
  • Thanks to Juliette Reinders Folmer for the patch

---

Statistics

Closed: 5 issues Merged: 7 pull requests

If you like to stay informed about releases and more, follow @​phpcs on Mastodon or @​PHP_CodeSniffer on X.

Full Changelog: PHPCSStandards/PHP_CodeSniffer@3.10.0...3.10.1

Changelog

Sourced from squizlabs/php_codesniffer's changelog.

[3.10.1] - 2024-05-22

Added

• Documentation for the following sniffs:
  • Generic.Commenting.DocComment
  • Thanks to [Rodrigo Primo][@​rodrigoprimo] for the patch.

Changed

• The following have received efficiency improvements:
  • Type handling in the PHP Tokenizer
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for the patch.
• Various housekeeping, including improvements to the tests and documentation.
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for their contributions.

Fixed

• Fixed bug #110, #437, #475: File::findStartOfStatement(): the start of statement/expression determination for tokens in parentheses/short array brackets/others scopes, nested within match expressions, was incorrect in most cases. The trickle down effect of the bug fixes made to the File::findStartOfStatement() method, is that the Generic.WhiteSpace.ScopeIndent and the PEAR.WhiteSpace.ScopeIndent sniffs should now be able to correctly determine and fix the indent for match expressions containing nested expressions. These fixes also fix an issue with the Squiz.Arrays.ArrayDeclaration sniff and possibly other, unreported bugs.
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for the patch
• Fixed bug #504: The tokenizer could inadvertently mistake the last parameter in a function call using named arguments for a DNF type.
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for the patch
• Fixed bug #508: Tokenizer/PHP: extra hardening against handling parse errors in the type handling layer.
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for the patch

#110: PHPCSStandards/PHP_CodeSniffer#110 #437: PHPCSStandards/PHP_CodeSniffer#437 #475: PHPCSStandards/PHP_CodeSniffer#475 #504: PHPCSStandards/PHP_CodeSniffer#504 #508: PHPCSStandards/PHP_CodeSniffer#508

[3.10.0] - 2024-05-20

Added

• Tokenizer support for PHP 8.2 Disjunctive Normal Form (DNF) types. #3731[sq-3731], #387, #461
  • Includes new T_TYPE_OPEN_PARENTHESIS and T_TYPE_CLOSE_PARENTHESIS tokens to represent the parentheses in DNF types.
  • These new tokens, like other parentheses, will have the parenthesis_opener and parenthesis_closer token array indexes set and the tokens between them will have the nested_parenthesis index.
  • The File::getMethodProperties(), File::getMethodParameters() and File::getMemberProperties() methods now all support DNF types. #471, #472, #473
  • Additionally, the following sniff has been updated to support DNF types:
    • Generic.PHP.LowerCaseType #478
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for the patches.
• Documentation for the following sniffs:
  • Squiz.WhiteSpace.FunctionClosingBraceSpace
  • Thanks to [Przemek Hernik][@​przemekhernik] for the patch.

Changed

• The help screens have received a face-lift for improved usability and readability. #447
  • Thanks to [Juliette Reinders Folmer][@​jrfnl] for the patch and thanks to [Colin Stewart][@​costdev], [Gary Jones][@​GaryJones] and [@​mbomb007] for reviewing.
• The Squiz.Commenting.ClosingDeclarationComment sniff will now also examine and flag closing comments for traits. #442
  • Thanks to [Rodrigo Primo][@​rodrigoprimo] for the patch.
• The following sniff(s) have efficiency improvements:

... (truncated)

Commits

• 8f90f7a Merge pull request #510 from PHPCSStandards/feature/changelog-3.10.1
• c9525a8 Changelog for the 3.10.1 release
• 3361ff2 Merge pull request #509 from PHPCSStandards/feature/file-findstartendofstatem...
• fb351b3 Merge pull request #508 from PHPCSStandards/feature/tokenizer-php-harden-the-...
• a82f02e File::find[Start|End]OfStatement(): add QA tests
• 83373f9 File::findStartOfStatement(): fix some unintentional parse errors in the test...
• 83afad8 Tokenizer/PHP: minor doc fix in type handling layer
• 87c3936 Tokenizer/PHP: efficiency fix
• 07477a7 Tokenizer/PHP: don't retokenize tokens in a broken type DNF declaration
• cac9038 Tokenizer/PHP: efficiency improvement for DNF type handling
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions