Skip to content

build(deps-dev): bump the non-major-dev group with 6 updates#1197

Open
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/composer/non-major-dev-b57c3efe2a
Open

build(deps-dev): bump the non-major-dev group with 6 updates#1197
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/composer/non-major-dev-b57c3efe2a

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github May 2, 2026
edited
Loading

Bumps the non-major-dev group with 6 updates:

Package From To
ergebnis/composer-normalize 2.45.0 2.51.0
ergebnis/license 2.6.0 2.7.0
phpstan/phpstan 2.1.22 2.1.54
phpstan/phpstan-deprecation-rules 2.0.3 2.0.4
phpstan/phpstan-phpunit 2.0.7 2.0.16
phpstan/phpstan-strict-rules 2.0.6 2.0.10

Updates ergebnis/composer-normalize from 2.45.0 to 2.51.0

Release notes

Sourced from ergebnis/composer-normalize's releases.

2.51.0

What's Changed

Full Changelog: ergebnis/composer-normalize@2.50.0...2.51.0

2.50.0

What's Changed

... (truncated)

Changelog

Sourced from ergebnis/composer-normalize's changelog.

[2.51.0][2.51.0]

For a full diff see [2.50.0...2.51.0][2.50.0...2.51.0].

Changed

[2.50.0][2.50.0]

For a full diff see [2.49.0...2.50.0][2.49.0...2.50.0].

Changed

[2.49.0][2.49.0]

For a full diff see [2.48.2...2.49.0][2.48.2...2.49.0].

Changed

[2.48.2][2.48.2]

For a full diff see [2.48.1...2.48.2][2.48.1...2.48.2].

Fixed

[2.48.1][2.48.1]

For a full diff see [2.48.0...2.48.1][2.48.0...2.48.1].

Fixed

  • Adjusted release workflow to create a release in draft mode, upload release assets, and then publish the release (#1496), by [@​localheinz]

[2.48.0][2.48.0]

For a full diff see [2.47.0...2.48.0][2.47.0...2.48.0].

Changed

... (truncated)

Commits
  • 36fb17d Enhancement: Prepare release
  • aa89d2f Merge pull request #1608 from ergebnis/feature/php-versions
  • 9959029 Merge pull request #1592 from ergebnis/feature/schema
  • c0efde1 Fix: Update CHANGELOG.md
  • 610db90 Enhancement: Update schema.json
  • 70cd291 Enhancement: Add list of supported PHP versions
  • 7b334fb Fix: Update badges
  • 60d8404 Merge pull request #1604 from ergebnis/dependabot/composer/ergebnis/rector-ru...
  • 8434401 composer(deps-dev): Bump ergebnis/rector-rules from 1.16.0 to 1.18.1
  • d95b60a Merge pull request #1606 from ergebnis/dependabot/composer/ergebnis/php-cs-fi...
  • Additional commits viewable in compare view

Updates ergebnis/license from 2.6.0 to 2.7.0

Release notes

Sourced from ergebnis/license's releases.

2.7.0

What's Changed

... (truncated)

Changelog

Sourced from ergebnis/license's changelog.

[2.7.0][2.7.0]

For a full diff see [2.6.0...2.7.0][2.6.0...2.7.0].

Changed

Commits
  • 97c3056 Enhancement: Prepare release
  • 80f804f Fix: Reference
  • 3768a88 Merge pull request #944 from ergebnis/feature/php85
  • 6e0d199 Enhancement: Allow installation on PHP 8.5
  • c065300 Fix: Add missing ]
  • e371ace Merge pull request #943 from ergebnis/dependabot/composer/ergebnis/data-provi...
  • 7948a9e composer(deps-dev): Bump ergebnis/data-provider from 3.4.0 to 3.5.0
  • 3d060ff Merge pull request #942 from ergebnis/dependabot/github_actions/codecov/codec...
  • 55ec839 github-actions(deps): Bump codecov/codecov-action from 5.4.3 to 5.5.0
  • f1f1a8f Merge pull request #941 from ergebnis/dependabot/github_actions/shivammathur/...
  • Additional commits viewable in compare view

Updates phpstan/phpstan from 2.1.22 to 2.1.54

Release notes

Sourced from phpstan/phpstan's releases.

2.1.54

Improvements 🔧

Bugfixes 🐛

  • Process unrolled foreach iteration body in original context to let nested loops stabilize (#5559), #9332, #14543
  • Preserve conditional expressions in invalidateExpression when requireMoreCharacters is true (#5560), #14545
  • Recognize [$obj, $method] as callable when is_callable($obj, $method) is known true in scope (#5547), #4510, thanks @​VincentLanglet and @​staabm!
  • Replace instead of union when writing to optional keys via union offset in ConstantArrayTypeBuilder (#5566), #14551
  • Check isFirstClassCallable() before calling getArgs() on nested FuncCall nodes (#5564), #14550, thanks @​staabm and @​VincentLanglet!
  • Preserve non-empty array guarantee in ConstantArrayType::setOffsetValueType when union key expansion produces all-optional keys (#5567), #14552, #14553

Performance 🏎️

2.1.53

Bugfixes 🐛

  • Treat Expr\UnaryMinus with scalar operand as scalar literal in isExprSafeToProjectThroughVariable and comparison type specifying (fixes TypeError crash) (#5557), #14542
  • Unroll foreach over union of constant arrays in tryProcessUnrolledConstantArrayForeach (#5558), #7978

2.1.52

This release fixes 45 issues! 🎉

Improvements 🔧

  • Emit virtual Assign node for List_ destructuring in foreach value position (#5504), #8075
  • Narrow array key type after type-checking the key variable inside a foreach loop (#5505), #7076
  • Support for static::SOME_CONST in PHPDoc (#5510), #13828, thanks @​VincentLanglet!
  • Allow GMP in increment/decrement operations (#5530), thanks @​Firehed!

... (truncated)

Commits
  • 8be50c3 PHPStan 2.1.54
  • c161e9f Updated PHPStan to commit c161e9ff792250b0c640dcc62d55cf93527f9ced
  • c8106c3 Updated PHPStan to commit c8106c31c51a0e6a72f1d9d83c16e49b2dc34bae
  • b6a75c6 Updated PHPStan to commit b6a75c61575f988cf66960d769c591b0571ec915
  • 5e793f7 Updated PHPStan to commit 5e793f756dbafd3e001aeb5cba33cb0d8af4e081
  • a5a5b0a Updated PHPStan to commit a5a5b0a85c4306d53a1a8d320729d44dc9f7e805
  • 2f627eb Updated PHPStan to commit 2f627eb5f31b47d25099f63c0e191a28fa1f0881
  • dc2650e Updated PHPStan to commit dc2650ed1985c1c3afe51f93504a9c8f1542dc5b
  • 2f825fc Updated PHPStan to commit 2f825fc43148ec0d0926bea5c40161c8e4533750
  • ef67586 PHPStan 2.1.53
  • Additional commits viewable in compare view

Updates phpstan/phpstan-deprecation-rules from 2.0.3 to 2.0.4

Release notes

Sourced from phpstan/phpstan-deprecation-rules's releases.

2.0.4

  • 6b55710 - Constants deprecation depends on Scope->getPhpVersion() (#170)
  • fc5fc52 - Add keywords for static analysis in composer.json
  • 7188c0b - move analyse-paths into phpstan.neon
  • 5f39876 - Fix mutation testing on dev branch (#166)
  • 68e0865 - Setup mutation testing
  • 0b87f52 - Update actions/checkout action to v5
  • 2476691 - Update Eomm/why-don-t-you-tweet action to v2
Commits
  • 6b55710 Constants deprecation depends on Scope->getPhpVersion() (#170)
  • fc5fc52 Add keywords for static analysis in composer.json
  • 7188c0b move analyse-paths into phpstan.neon
  • 5f39876 Fix mutation testing on dev branch (#166)
  • 68e0865 Setup mutation testing
  • 0b87f52 Update actions/checkout action to v5
  • 2476691 Update Eomm/why-don-t-you-tweet action to v2
  • See full diff in compare view

Updates phpstan/phpstan-phpunit from 2.0.7 to 2.0.16

Release notes

Sourced from phpstan/phpstan-phpunit's releases.

2.0.16

  • 6ab598e - DataProviderDataRule: Optimize hot path

2.0.15

  • 0f6ba8e - DataProviderReturnTypeIgnoreExtension - ignore Iterator, Generator, IteratorAggregate too

2.0.14

  • f7553d6 - Add support for createMockForIntersectionOfInterfaces

2.0.13

  • 45bc1ad - Implement DynamicCallToAssertionIgnoreExtension
  • 590b84d - chore(deps): update wyrihaximus/github-action-get-previous-tag action to v2
  • 4d1d776 - Add keywords for static analysis in composer.json

2.0.12

  • e4c5a22 - TestMethodsHelper - class methods cache
  • 80091f9 - TestMethodsHelper - speed-up by asking for immediate methods only

2.0.11

  • 5e30669 - Perf: Refactor PHPUnitVersionDetector to use runtime reflection
  • 202afe9 - chore(deps): update github-actions

2.0.10

  • 8d61a58 - Remove checkDataProviderData and introduce reportMissingDataProviderReturnType

2.0.9

  • cda423c - Implement AttributeRequiresPhpVersionRule
  • 83b717d - ci: Add tests for PHP 8.5
  • 75ba948 - chore(deps): update actions/checkout action to v6

2.0.8

  • 2fe9fbe - Fix AssertSameWithCountRule for recursive count()
  • d935297 - Fix "Unexpected input(s) 'extensions', valid inputs are ['php-version', 'php-extensions', 'build-infection-path']"
  • 8532ceb - Make AssertSameNullExpectedRule auto-fixable
  • a4abfc1 - Use TypeSystem in AssertSameBooleanExpectedRule
  • 36cb9a6 - Make AssertSameBooleanExpectedRule auto-fixable
  • 450bfc0 - Added assertArrayHasKey() expectations
  • 033f690 - PHPUnit 9.x/10.x does not at all support named arguments from data-providers
  • 758d343 - Refactor PHPUnitVersionDetector to ease different major version checks
  • dd87f2e - Assert*Rules: Do cheap checks first (#247)
  • 5c89d74 - Ignore missingType.iterableValue for data-providers
  • 1fbc321 - move analyse-paths into phpstan.neon
  • 11f3ada - Fix mutation testing on dev branch (#244)
  • 53e33fc - Setup mutation testing
  • 12676a7 - One more test
  • c81e395 - Fix memory consumption in DataProviderDataRule
  • 61860a6 - Implement DataProviderDataRule
  • 39950c7 - Preparational refactoring for DataProviderDataRule
  • c54a269 - Narrow too wide return type
  • 9ec3fa9 - Modernize code examples in README.md

... (truncated)

Commits
  • 6ab598e DataProviderDataRule: Optimize hot path
  • 0f6ba8e DataProviderReturnTypeIgnoreExtension - ignore Iterator, Generator, IteratorA...
  • f7553d6 Add support for createMockForIntersectionOfInterfaces
  • 45bc1ad Implement DynamicCallToAssertionIgnoreExtension
  • 590b84d chore(deps): update wyrihaximus/github-action-get-previous-tag action to v2
  • 4d1d776 Add keywords for static analysis in composer.json
  • e4c5a22 TestMethodsHelper - class methods cache
  • 80091f9 TestMethodsHelper - speed-up by asking for immediate methods only
  • 5e30669 Perf: Refactor PHPUnitVersionDetector to use runtime reflection
  • 202afe9 chore(deps): update github-actions
  • Additional commits viewable in compare view

Updates phpstan/phpstan-strict-rules from 2.0.6 to 2.0.10

Release notes

Sourced from phpstan/phpstan-strict-rules's releases.

2.0.10

  • 1aba28b - Bleeding edge - set reportNonIntStringArrayKey to true

2.0.9

  • b94a0b1 - Bleeding edge - Add operand types to DisallowedLooseComparisonRule error message
  • f6f5b3e - Update WyriHaximus/github-action-get-previous-tag action to v2
  • f602823 - Add keywords for static analysis in composer.json

2.0.8

  • 1ed9e62 - Allow literal string dynamic property
  • 7493a9f - Update dessant/lock-threads action to v6
  • 796f9c9 - Update actions/checkout action to v6
  • 3dcd0b8 - Remove duplicate rules in Readme

2.0.7

  • d6211c4 - enable checkStrictPrintfPlaceholderTypes
  • 6b78d53 - Update README.md
  • 0435aeb - Consolidate overwriteVariablesWithLoop rule details
  • e861638 - Simplify tests in which checkNullables is always true
  • 11b6403 - Simplify tests in which treatPhpDocTypesAsCertain is always true
  • b043bd8 - Simplify RequireParentConstructCallRule
  • 9f76a17 - Update actions/checkout action to v5
  • 2b69ec5 - Update Eomm/why-don-t-you-tweet action to v2
Commits
  • 1aba28b Bleeding edge - set reportNonIntStringArrayKey to true
  • b94a0b1 Bleeding edge - Add operand types to DisallowedLooseComparisonRule error message
  • f6f5b3e Update WyriHaximus/github-action-get-previous-tag action to v2
  • f602823 Add keywords for static analysis in composer.json
  • 1ed9e62 Allow literal string dynamic property
  • 7493a9f Update dessant/lock-threads action to v6
  • 796f9c9 Update actions/checkout action to v6
  • 3dcd0b8 Remove duplicate rules in Readme
  • d6211c4 enable checkStrictPrintfPlaceholderTypes
  • 6b78d53 Update README.md
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
build(deps-dev): bump the non-major-dev group with 6 updates
af8ecae 
Bumps the non-major-dev group with 6 updates:

| Package | From | To |
| --- | --- | --- |
| [ergebnis/composer-normalize](https://github.com/ergebnis/composer-normalize) | `2.45.0` | `2.51.0` |
| [ergebnis/license](https://github.com/ergebnis/license) | `2.6.0` | `2.7.0` |
| [phpstan/phpstan](https://github.com/phpstan/phpstan) | `2.1.22` | `2.1.54` |
| [phpstan/phpstan-deprecation-rules](https://github.com/phpstan/phpstan-deprecation-rules) | `2.0.3` | `2.0.4` |
| [phpstan/phpstan-phpunit](https://github.com/phpstan/phpstan-phpunit) | `2.0.7` | `2.0.16` |
| [phpstan/phpstan-strict-rules](https://github.com/phpstan/phpstan-strict-rules) | `2.0.6` | `2.0.10` |


Updates `ergebnis/composer-normalize` from 2.45.0 to 2.51.0
- [Release notes](https://github.com/ergebnis/composer-normalize/releases)
- [Changelog](https://github.com/ergebnis/composer-normalize/blob/main/CHANGELOG.md)
- [Commits](ergebnis/composer-normalize@2.45.0...2.51.0)

Updates `ergebnis/license` from 2.6.0 to 2.7.0
- [Release notes](https://github.com/ergebnis/license/releases)
- [Changelog](https://github.com/ergebnis/license/blob/main/CHANGELOG.md)
- [Commits](ergebnis/license@2.6.0...2.7.0)

Updates `phpstan/phpstan` from 2.1.22 to 2.1.54
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/2.2.x/CHANGELOG.md)
- [Commits](phpstan/phpstan@2.1.22...2.1.54)

Updates `phpstan/phpstan-deprecation-rules` from 2.0.3 to 2.0.4
- [Release notes](https://github.com/phpstan/phpstan-deprecation-rules/releases)
- [Commits](phpstan/phpstan-deprecation-rules@2.0.3...2.0.4)

Updates `phpstan/phpstan-phpunit` from 2.0.7 to 2.0.16
- [Release notes](https://github.com/phpstan/phpstan-phpunit/releases)
- [Commits](phpstan/phpstan-phpunit@2.0.7...2.0.16)

Updates `phpstan/phpstan-strict-rules` from 2.0.6 to 2.0.10
- [Release notes](https://github.com/phpstan/phpstan-strict-rules/releases)
- [Commits](phpstan/phpstan-strict-rules@2.0.6...2.0.10)

---
updated-dependencies:
- dependency-name: ergebnis/composer-normalize
  dependency-version: 2.51.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: non-major-dev
- dependency-name: ergebnis/license
  dependency-version: 2.7.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: non-major-dev
- dependency-name: phpstan/phpstan
  dependency-version: 2.1.54
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-dev
- dependency-name: phpstan/phpstan-deprecation-rules
  dependency-version: 2.0.4
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-dev
- dependency-name: phpstan/phpstan-phpunit
  dependency-version: 2.0.16
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-dev
- dependency-name: phpstan/phpstan-strict-rules
  dependency-version: 2.0.10
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: non-major-dev
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added the dependency label May 2, 2026
@dependabot dependabot Bot requested review from Lctrs and lctrs-bot as code owners May 2, 2026 01:27
@dependabot dependabot Bot added the dependency label May 2, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lctrs-bot lctrs-bot Awaiting requested review from lctrs-bot lctrs-bot is a code owner

@Lctrs Lctrs Awaiting requested review from Lctrs Lctrs is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependency

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants