Bump the dev-dependencies group across 1 directory with 4 updates

[dependabot]

Bumps the dev-dependencies group with 4 updates in the / directory: phpstan/phpstan, phpstan/phpstan-symfony, shipmonk/composer-dependency-analyser and vimeo/psalm.

Updates phpstan/phpstan from 1.10.57 to 1.12.7

Release notes

Sourced from phpstan/phpstan's releases.

1.12.7

Major new features 🚀

• Implement template default types (#3457), #4801, thanks @​jiripudil!
  • See https://x.com/OndrejMirtes/status/1843920480342057154

Improvements 🔧

• Move result cache output from debug (-vvv) to very verbose (-vv) mode (#3345), thanks @​janedbal!
• Support for non-empty-array and non-empty-list array shape kind (phpstan/phpstan-src@107a7e3)
• Improve lowercase string verbosity level (#3567), thanks @​VincentLanglet!
• Show TypeResult reasons in StrictComparisonOfDifferentTypesRule (phpstan/phpstan-src@34bacd7)
• Decorate reasons when comparing ConstantArrayType (phpstan/phpstan-src@dc5d8f4), #11799, #10421

Bugfixes 🐛

• Fix nextAutoIndexes in array coming from ArrayCombineFunctionReturnTypeExtension (phpstan/phpstan-src@c4ba434), #11819
• Fix return type of array_reverse() with optional keys (#3406), #11549, thanks @​herndlm!
• Try to quit the child process only after internal errors were accounted for (phpstan/phpstan-src@dcd69eb), #11826
• react/http PHP 8.4 patch (phpstan/phpstan-src@40e461d)

Function signature fixes 🤖

• functionMap: more precise get_defined_vars() (#3546), thanks @​janedbal!
• Reflection getAttributes returns list (#3548), thanks @​ManuelHu!
• More precise md5/sha1 return type (#3541), thanks @​staabm!
• Improve return type of token_name() and PhpToken::getTokenName() (#3558), #11808, thanks @​zonuexe!

Internals 🔍

• Fix typo (phpstan/phpstan-src@5b43d50)
• Introduce isSuperTypeOfWithReason (#3538), thanks @​VincentLanglet!
• Add function PHPStan\dumpPhpDocType() (#3559), #11561, thanks @​zonuexe!
• Introduce TypeResult (phpstan/phpstan-src@a815d57)

1.12.6

Bleeding edge 🔪

• Added absent type checks about @phpstan-assert PHPDoc tags (phpstan/phpstan-src@ca0a7e9), #11780

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
</tr></table> 

... (truncated)

Commits

• dc2b997 PHPStan 1.12.7
• 247ae64 Updated PHPStan to commit 247ae64eaa4126e6fd9bca563d71ac95080392cf
• e802b85 Updated PHPStan to commit e802b85aa2cecf243410c41464e632ca58eaa658
• dc5d8f4 Updated PHPStan to commit dc5d8f4d3eef18b1d80b8ffb3a1adfe8de6d7268
• 40e461d Updated PHPStan to commit 40e461d2e8dff171cdf588e380eb20e782e94eb1
• 3128f26 Updated PHPStan to commit 3128f266461cdcb559672e8519db7643666c669a
• 107a7e3 Updated PHPStan to commit 107a7e38e2173d8b8b4f18e5d592fc8ead02b96a
• 856208a Updated PHPStan to commit 856208a53b3b1c4eada01f7e4892573d756cdf3f
• ff75213 Updated PHPStan to commit ff7521302711c2eca765d47f8606179f0ca0d19b
• 66664bb Updated PHPStan to commit 66664bb612b4cfb4e8a870f5d11f5af731f5e21a
• Additional commits viewable in compare view

Updates phpstan/phpstan-symfony from 1.3.7 to 1.4.11

Release notes

Sourced from phpstan/phpstan-symfony's releases.

1.4.11

• 270c2ee - Update Process.stub

1.4.10

• f7d5782 - Fix InputBagTypeSpecifyingExtension

1.4.9

• 51ab243 - Require PHPStan 1.12
• 30d0886 - Pin build-cs
• 4279753 - Test newer PHP versions
• 3cf113f - Fix stubs

1.4.8

• 14eec8c - Add stub for AbstractController::createForm()

1.4.7

• ee88a01 - Fix internal error when DIC param map has > 256 items

1.4.6

• e909a07 - DiagnoseExtension

1.4.5

• 1bd7c33 - Also support command argument and initialize method

1.4.4

• bca27f1 - Fix interact method inference

1.4.3

• af6ae0f - Update getArgument return type in interact method

1.4.2

• 2c3d666 - Support for alias to inlined service

1.4.1

• d530cfe - Merge remote-tracking branch 'origin/1.3.x' into 1.4.x
• f4b9407 - Synchronize stub with symfony
• 3fbf634 - Synchronize stub with symfony
• 99848d8 - Add stub for Compound::getConstraints()

1.4.0

• 51183fe - Update lock-closed-issues.yml
• f4b9407 - Synchronize stub with symfony
• 3fbf634 - Synchronize stub with symfony
• 99848d8 - Add stub for Compound::getConstraints()
• 8148308 - Merge remote-tracking branch 'origin/1.3.x' into 1.4.x
• c9f5ceb - Merge remote-tracking branch 'origin/1.3.x' into 1.4.x
• 67e208d - Add documentation to load DI helper
• a0e0f1f - chore(deps): update metcalfc/changelog-generator action to v4.3.1
• b2ddd0f - chore(deps): update cbrgm/mastodon-github-action action to v2
• 3b3083d - Merge remote-tracking branch 'origin/1.3.x' into 1.4.x

... (truncated)

Commits

• 270c2ee Update Process.stub
• f7d5782 Fix InputBagTypeSpecifyingExtension
• 51ab243 Require PHPStan 1.12
• 30d0886 Pin build-cs
• 4279753 Test newer PHP versions
• 3cf113f Fix stubs
• 14eec8c Add stub for AbstractController::createForm()
• ee88a01 Fix internal error when DIC param map has > 256 items
• e909a07 DiagnoseExtension
• 1bd7c33 Also support command argument and initialize method
• Additional commits viewable in compare view

Updates shipmonk/composer-dependency-analyser from 1.5.0 to 1.7.0

Release notes

Sourced from shipmonk/composer-dependency-analyser's releases.

1.7.0

New features:

• Support absolute paths in composer autoload sections (#171, @​VincentLanglet)
• Support even zero composer classloaders (#161)
• Print issue counts per error type (#175)
• Add --version cli option (#172, #176)

Fixes:

• Show all usages even when --show-all-usages is combined with --verbose (#160)
• Add missing --ignore-unknown-functions to --help (#159)
• Improve further processing of junit format (#164, #174)

1.6.1

Fixes

• Fix PHP warning with no composer classloader (#150)

1.6.0

New features:

• Read composer's exclude-from-classmap to exclude paths from analysis (#140 by @​LastDragon-ru )
• Support qualified names in global scope (#148)
  • Often used in bundles.php in Symfony applications (#146)

Fixes:

• More specific path has dev/prod mark priority (#142)
• Fix false positive with extension functions with uppercase characters (#144)

1.5.3

Fixes

• Ensure output of junit format is valid xml (#129)
• Check invalid cli options combinations (#131)

1.5.2

Fixes

• Fix unknown function false positive in multi-attribute usages (#124)

1.5.1

Fixes

• Fix wrong detection of attribute name when aliased import or FQN is used (#121)

Commits

• bca862b Add reference to --version (#176)
• a65295b Add --version cli option (#172)
• f61a643 ConsoleFormatter: display error counts per category (#175)
• 7feaa97 junit: eliminate newlines inside \<failure> (#174)
• 47ea1c8 Add oveleon/contao-cookiebar to e2e (#165)
• 6848c5a E2E: add twig-cs-fixer (#173)
• c11ae11 Support absolute paths in composer autoload sections (#171)
• e64aa7f Bump the dev-dependencies group with 2 updates (#170)
• db52364 JUnit format improvements (#164)
• 213c157 Support zero composer classloaders (#161)
• Additional commits viewable in compare view

Updates vimeo/psalm from 5.20.0 to 5.26.1

Release notes

Sourced from vimeo/psalm's releases.

5.26.1

What's Changed

Fixes

• Fix JSON formatter crashes with invalid UTF in error messages by @​weirdan in vimeo/psalm#11092

Full Changelog: vimeo/psalm@5.26.0...5.26.1

5.26.0

What's Changed

Features

• Add mysqli.execute-query as sink for TaintedSql by @​cgocast in vimeo/psalm#11021
• Add TaintedCallable sinks for 4 core generic functions by @​cgocast in vimeo/psalm#11090
• Improve mysql fetch_field* return type by @​MoonE in vimeo/psalm#11009
• Check for psalm.dist.xml as well by @​HypeMC in vimeo/psalm#11031

Fixes

• Change ReflectionParameter::getName() result type to non-empty-string by @​vjik in vimeo/psalm#11037
• Fix mysqli_real_escape_string stub by @​kamil-tekiela in vimeo/psalm#11078
• Fix mysqli_get_client_version by @​kamil-tekiela in vimeo/psalm#11074
• Up the minimum required version of nikic/php-parser to 4.17 by @​chesn0k in vimeo/psalm#10968
• Fix callable/lowercase strings coercion by @​weirdan in vimeo/psalm#11091
• Consistently emit issues for properties on classes with unknown mixins by @​issidorov in vimeo/psalm#11081

New Contributors

• @​chesn0k made their first contribution in vimeo/psalm#10968

Full Changelog: vimeo/psalm@5.25.0...5.26.0

5.25.0

What's Changed

Features

• Casting int-range should keep literals by @​kkmuffme in vimeo/psalm#10941
• Update help panel by @​llaville in vimeo/psalm#11000
• Add support for phpstan-pure by @​VincentLanglet in vimeo/psalm#10975
• Precise preg_match_all return type by @​VincentLanglet in vimeo/psalm#10969

Fixes

• Fix-GH-10933-And-GH-10951 by @​jack-worman in vimeo/psalm#10953
• redis: add possible types for Redis#auth method by @​boesing in vimeo/psalm#10934
• Avoid false positive about array which are non-callable by @​VincentLanglet in vimeo/psalm#10935
• Fix literal-string|non-empty-literal-string by @​VincentLanglet in vimeo/psalm#10930
• Fix signature of Locale::canonicalize. by @​ADmad in vimeo/psalm#11010

New Contributors

• @​llaville made their first contribution in vimeo/psalm#11000

... (truncated)

Commits

• d747f65 Merge pull request #11092 from weirdan/fix-invalid-utf8-output-in-json-reports
• bb57f39 Fix JSON formatter crashes with invalid UTF in error messages
• 4787eaf Merge pull request #11081 from issidorov/regression-tests-with-undefined-mixin
• 8b528ad Merge pull request #11091 from weirdan/callable-and-lowercase-strings-are-coe...
• b6cea6e Fix callable/lowercase strings coercion
• 2a64d1c Merge pull request #10968 from chesn0k/chesn0k-patch-1
• 3c13a5b Merge pull request #11031 from HypeMC/check-for-psalm.dist.xml-as-well
• c2bdb40 Merge pull request #11009 from MoonE/mysqli-fetch-field
• 10a987b Merge pull request #11074 from kamil-tekiela/mysqli_get_client_version
• 4324122 Merge pull request #11078 from kamil-tekiela/mysqli_real_escape_string
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependencies.

[github-actions]

🏰 Composer Production Dependency changes 🏰

Prod Packages	Operation	Base	Target	Link
composer/pcre	Upgraded	3.1.4	3.3.1	Compare
doctrine/deprecations	Upgraded	1.1.2	1.1.3	Compare
nikic/php-parser	Upgraded	v4.19.1	v4.19.4	Compare
phpdocumentor/type-resolver	Upgraded	1.8.2	1.9.0	Compare
phpstan/phpdoc-parser	Upgraded	1.25.0	1.33.0	Compare
psr/log	Upgraded	3.0.0	3.0.2	Compare
symfony/console	Upgraded	v6.4.12	v6.4.13	Compare
symfony/filesystem	Upgraded	v6.4.12	v6.4.13	Compare
symfony/string	Upgraded	v6.4.12	v6.4.13	Compare

[github-actions]

🚧 Composer Development Dependency changes 🚧

Dev Packages	Operation	Base	Target	Link
amphp/amp	Upgraded	v2.6.2	v2.6.4	Compare
amphp/byte-stream	Upgraded	v1.8.1	v1.8.2	Compare
composer/semver	Upgraded	3.4.0	3.4.3	Compare
felixfbecker/language-server-protocol	Upgraded	v1.5.2	v1.5.3	Compare
netresearch/jsonmapper	Upgraded	v4.2.0	v4.5.0	Compare
phpstan/phpstan	Upgraded	1.10.57	1.12.7	Compare
phpstan/phpstan-symfony	Upgraded	1.3.7	1.4.11	Compare
sebastian/diff	Upgraded	5.1.0	5.1.1	Compare
shipmonk/composer-dependency-analyser	Upgraded	1.5.0	1.7.0	Compare
spatie/array-to-xml	Upgraded	3.2.2	3.3.0	Compare
symfony/process	Upgraded	v6.4.12	v6.4.13	Compare
vimeo/psalm	Upgraded	5.20.0	5.26.1	Compare

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.