Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: Bump vimeo/psalm from 4.3.2 to 4.4.1 #4808

Merged
1 commit merged into from
Jan 18, 2021
Merged

chore: Bump vimeo/psalm from 4.3.2 to 4.4.1 #4808

1 commit merged into from
Jan 18, 2021

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 18, 2021

Bumps vimeo/psalm from 4.3.2 to 4.4.1.

Release notes

Sourced from vimeo/psalm's releases.

Bugfixes

  • prevents unnecessary execution of git commands (bug introduced in 4.4.0) (#5008)
  • @orklah removed signature return types in stubs to prevent false positive method signature mismatches (#5014)
  • @orklah removed a false-positive for templated array keys when creating arrays (#5019)
  • @thomasbley added a proper error message when exec is unavailable (#5010)

4.4.0

Features

Compatibility with new Symfony polyfills

Recently some new Symfony polyfills contained code that didn't broke scanning.

@weirdan made Psalm aware of version checks in #4967, hopefully fixing this for consumers.

SARIF output (for security scanning)

@lukasbestle added help links in SARIF output (#4924) and ensured they can be produced by the Phar (#4925)

Bugfixes

  • @hollodotme fixed the signature for PDOStatement::fetchObject (#4915)
  • @lukasbestle added better support for $this in @var annotations (#4922)
  • @orklah allowed Psalm to understand string concatenation with known ints (#4938)
  • allow array_reduce to be called with a single argument (#4917)
  • Security scanning @adrienlucas improved handling of specialised calls (#4940, #4948)
  • @weirdan fixed signature of gzread (#4960)
  • Traversable interface added back to PDOStatement (#4951)
  • Psalm now performs more intelligent subtraction of from potential template types (#4943)
  • @weirdan added support for the Attribute::IS_REPEATABLE flag (#4971)
  • detect destructuring assignments inside loops (#4982)
  • strict comparisons to arrays now produce better inferred types (#4976)
  • @Ocramius improved the return type of count when the array size is known (#4997)

Internal

  • @orklah added a DTO for plugins, rendering the existing plugin system a legacy one (#4881)
  • and @adrienlucas fixed a small bug in the new plugin format (#4962)
  • @weirdan stripped out some unnecessary files from the composer package (#4968)
  • @weirdan moved Phar generation to GitHub Actions (#4974)
  • @bendavies split out PHPUnit tests across GitHub actions (#4985)
Commits
  • 9fd7a7d Only create after analysis event if they exist
  • 7a40443 don't throw InvalidArrayOffset when dealing with templates (#5019)
  • 26f756d remove signature return types in stubs (#5014)
  • 080cf61 fix #5010 function exec() is disabled (#5012)
  • ef4afd7 Unset should change array with keyed offsets
  • d10a068 Fix #5001 - update variables after context after type change from empty
  • a53cc23 #4997 added more precise type inference for count() returning 0 or `posit...
  • 1afce4d Improve treatment of strict equality
  • 37fb081 Bump up to 8 concurrent builds
  • 4e677c9 So long Travis
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually

@dependabot
chore: Bump vimeo/psalm from 4.3.2 to 4.4.1
26df1d2 
Bumps [vimeo/psalm](https://github.com/vimeo/psalm) from 4.3.2 to 4.4.1.
- [Release notes](https://github.com/vimeo/psalm/releases)
- [Commits](vimeo/psalm@4.3.2...4.4.1)

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added auto-squash Auto-completes a PR when reviews and checks pass dependencies php Pull requests that update Php code labels Jan 18, 2021
@ghost ghost merged commit 3e7135d into master Jan 18, 2021
@ghost ghost deleted the dependabot/composer/vimeo/psalm-4.4.1 branch January 18, 2021 09:15
@github-actions
Copy link

This pull request has been automatically locked since there
has not been any recent activity after it was closed.
Please open a new issue for related bugs.

@github-actions github-actions bot locked as resolved and limited conversation to collaborators Jan 19, 2022
This pull request was closed.
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers
No reviews
Assignees
No one assigned
Labels
auto-squash Auto-completes a PR when reviews and checks pass dependencies php Pull requests that update Php code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants