Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

composer(deps-dev): update phpstan/phpstan requirement from ^2.1.5 to ^2.1.6 #797

Merged
merged 1 commit into from
Feb 20, 2025
Merged

composer(deps-dev): update phpstan/phpstan requirement from ^2.1.5 to ^2.1.6 #797

merged 1 commit into from
Feb 20, 2025

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 20, 2025
edited
Loading

Updates the requirements on phpstan/phpstan to permit the latest version.

Release notes

Sourced from phpstan/phpstan's releases.

2.1.6

Improvements 🔧

Bugfixes 🐛

Internals 🔍

Commits
  • 6eaec7c PHPStan 2.1.6
  • 24e2736 Updated PHPStan to commit 24e2736d6af9b4f89a4c1a4dfa57d8be6e020e6f
  • 5c0771e Updated PHPStan to commit 5c0771e60af21bcc89422392c9b8c1046af2eb98
  • 9d7dc2e Enable Bladestan integration test
  • ee7eb11 Updated PHPStan to commit ee7eb11693d9962de8dbab9eb099811a6f154e6e
  • 200504b fix(deps): update website
  • f2bf43c Updated PHPStan to commit f2bf43c213819cc59f64f86c4421a664d1f75905
  • 83da59c Update BACKERS.md
  • 0bc37ee Update PHPUnit integration test
  • cc6bd17 Update BACKERS.md
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Feb 20, 2025
@dependabot dependabot bot requested a review from mimmi20 as a code owner February 20, 2025 03:42
@github-actions github-actions bot enabled auto-merge February 20, 2025 04:13
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Feb 20, 2025
edited
Loading

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

PackageVersionScoreDetails
composer/phpstan/phpstan >= 2.1.6, < 3.0.0 🟢 6.3
Details
CheckScoreReason
Binary-Artifacts🟢 10no binaries found in the repo
Dangerous-Workflow⚠️ -1no workflows found
Token-Permissions⚠️ -1No tokens found
Code-Review⚠️ 0Found 2/30 approved changesets -- score normalized to 0
Maintained🟢 1030 commit(s) and 17 issue activity found in the last 90 days -- score normalized to 10
Packaging⚠️ -1packaging workflow not detected
CII-Best-Practices⚠️ 0no effort to earn an OpenSSF best practices badge detected
Fuzzing⚠️ 0project is not fuzzed
Pinned-Dependencies⚠️ -1no dependencies found
Vulnerabilities🟢 100 existing vulnerabilities detected
License🟢 10license file detected
Signed-Releases🟢 85 out of the last 5 releases have a total of 5 signed artifacts.
Security-Policy🟢 10security policy file detected
Branch-Protection⚠️ -1internal error: error during GetBranch(1.12.x): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration
SAST⚠️ 0SAST tool is not run on all commits -- score normalized to 0

Scanned Files

  • composer.json

@dependabot
composer(deps-dev): update phpstan/phpstan requirement
5036eb1 
Updates the requirements on [phpstan/phpstan](https://github.com/phpstan/phpstan) to permit the latest version.
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/2.1.x/CHANGELOG.md)
- [Commits](phpstan/phpstan@2.1.5...2.1.6)

---
updated-dependencies:
- dependency-name: phpstan/phpstan
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/composer/master/phpstan/phpstan-tw-2.1.6 branch from f18cead to 5036eb1 Compare February 20, 2025 07:09
@github-actions github-actions bot merged commit d2c041f into master Feb 20, 2025
42 checks passed
@github-actions github-actions bot deleted the dependabot/composer/master/phpstan/phpstan-tw-2.1.6 branch February 20, 2025 09:22
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] approved these changes

@mimmi20 mimmi20 Awaiting requested review from mimmi20 mimmi20 is a code owner

Assignees

@mimmi20 mimmi20

Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@mimmi20