composer(deps-dev): bump the version-updates group with 3 updates

[dependabot]

Updates the requirements on mimmi20/coding-standard, phpstan/phpstan and rector/rector to permit the latest version.
Updates mimmi20/coding-standard to 5.2.40

Commits

• 7110215 Merge pull request #539 from mimmi20/dependabot/composer/master/friendsofphp/...
• 44c5150 composer(deps): update friendsofphp/php-cs-fixer requirement
• 5a4d0fe Merge pull request #538 from mimmi20/dependabot/composer/master/version-updat...
• 4831272 composer(deps-dev): update phpstan/phpstan requirement
• See full diff in compare view

Updates phpstan/phpstan to 1.11.10

Release notes

Sourced from phpstan/phpstan's releases.

1.11.10

Bleeding edge 🔪

• Precise array shape for preg_replace_callback() $matches (#3281), thanks @​staabm!
• Report invalid exclude paths in PHP config (phpstan/phpstan-src@9718c14)

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

• Allow nonexistent paths in excludePaths by appending (?) (phpstan/phpstan-src@39649c2, phpstan/phpstan-src@be65bab), #11436
• Do not report nonexistent paths in ignoreErrors if reportUnmatchedIgnoredErrors: false (phpstan/phpstan-src@b7fe990), #11436
• Narrow tagged unions based on count() with array size (#3302), thanks @​staabm!

Bugfixes 🐛

• RegularExpressionPatternRule: fix false positive in preg_quote() handling (#3280), #11432, thanks @​staabm!
• Support literal strings in RegexGroupParser (#3284), thanks @​staabm!
• Support classes of literal strings in RegexGroupParser (#3285), thanks @​staabm!
• Don't infer constant types for "i"-modfied patterns (#3288), thanks @​staabm!
• Support non-falsy-string in RegexGroupParser (#3289), thanks @​staabm!
• RegexGroupParser: Ignore whitespaces on "x"-modified patterns (#3291) (#3291), thanks @​staabm!
• RegexArrayShapeMatcher: fix preg_match_all with PREG_OFFSET_CAPTURE (#3292), #11457, thanks @​staabm!
• RegexArrayShapeMatcher - Fix subject types (#3300), thanks @​staabm!
• Fix ConstantArrayType::isSuperTypeOf() for empty array (phpstan/phpstan-src@ed6bc0b)
• is_resource: adjust type specification for truthy context only (#3298), #9687, thanks @​janedbal!
• Fix loose comparison between '1' and '+1' (#3301), thanks @​thg2k!

Function signature fixes 🤖

• Update some mysqli function return types (#3279), #8345, thanks @​mattschlosser!

Internals 🔍

• Extracted RegexGroupParser from RegexArrayShapeMatcher (#3278), thanks @​staabm!
• E2E test about path validation in ignoreErrors and excludePaths (phpstan/phpstan-src@9246976)
• RegularExpressionPatternRuleTest: utilize preg_match() array shape tests (#3290), thanks @​staabm!
• Simplify RegexArrayShapeMatcher (#3293), thanks @​staabm!

... (truncated)

Commits

• 640410b PHPStan 1.11.10
• b7fe990 Updated PHPStan to commit b7fe9900d5933ffdbdeeb2b10877fd2764cb8bb8
• b7ec800 Updated PHPStan to commit b7ec800b059316d33fb1cc370229bfe5b4143123
• ed6bc0b Updated PHPStan to commit ed6bc0b93499b5c7463ba05aefb1377b9eb9d1e0
• 6321600 Updated PHPStan to commit 63216003befc80712b927c54235dc70cd2c3d134
• 080280f Updated PHPStan to commit 080280f549bad9bd285de3ea720d34021d165ca4
• 285ca8b Updated PHPStan to commit 285ca8b7117a46008039adea0c4806c7d52f21dc
• 9a3c102 Updated PHPStan to commit 9a3c102fec4ab55bdd5c97e785dc92b368b5a9be
• abf47da Update baselines
• 2acc115 Updated PHPStan to commit 2acc115f97bfba95af0f3ef2e0134d84c7897fe3
• Additional commits viewable in compare view

Updates rector/rector to 1.2.3

Release notes

Sourced from rector/rector's releases.

Released Rector 1.2.3

New Features 🥳

• Add withRealPathReporting() to allow real paths in output formatters (#6187), Thanks @​llaville!
• Add known type casting to AnnotationToAttributeRector (#6217)
• Improve Carbon use parse method (#6183), Thanks @​florisbosch!

Bugfixes 🐛

• Only import docblock if import name enabled on PostFileProcessor (#6185)
• fix issue #8755 about wrong systemError location (#6184), Thanks @​llaville!
• Support more assign cases in PropertyFetchAssignManipulator (#6192), Thanks @​andersonamuller!
• Skip Symfony Response in ReturnTypeFromReturnNewRector (#6202)
• Skip only response inside controller class (#6204)
• [Php54] No need reprint when array is just created on LongArrayToShortArrayRector (#6206)
• [TypeDeclaration] Handle crash on nullable intersection on ClosureReturnTypeRector (#6213)
• [Php71] Allow multiple same catches on MultiExceptionCatchRector (#6218)
• [CodeQuality] Skip Generator on SimplifyForeachToCoalescingRector (#6221)
• [CodeQuality] Ensure check native array type on Foreach* rules (#6222)
• [TypeDeclaration] Skip isset and empty with index on param variable on StrictArrayParamDimFetchRector (#6227)
• [TypeDeclaration] Skip mixed in union on ClosureReturnTypeRector (#6228)

Removed 💀

• Remove SimplifyUselessVariableRector from code quality level (#6201), Thanks @​Harfusha!

---

rectorphp/rector-symfony 🎵

• Add the Symfony 7.0 set to SymfonySetList.php (#659), Thanks @​pbowyer
• [Config] Add ParameterBagToAutowireAttributeRector (#654)
• add void fixture (#653)
• [CodeQuality] Remove no returns check on ResponseReturnTypeControllerActionRector (#652)
• Add new Response() support to ResponseReturnTypeControllerActionRector (#651)
• [Configs] Add MergeServiceNameTypeRector (#650)
• Deprecate ServicesSetNameToSetTypeRector as it creates invalid code (#649)

rectorphp/rector-doctrine 🟠

... (truncated)

Commits

• 2433e95 Rector 1.2.3
• 4abab4c Updated Rector to commit 51261506c37859e99fde858677031dd0d72e7bfc
• 267b6cc Updated Rector to commit 24fb5874905da56065ef38d9cfe9bff77cb04cac
• 39ccd68 Updated Rector to commit 67238d841a46b5fecc9ef204ffef4ba773e82cb9
• efcd77a Updated Rector to commit 67238d841a46b5fecc9ef204ffef4ba773e82cb9
• cbfdee3 Updated Rector to commit 59585ae75aafa8c5e2666b047a84f13ab35fb59f
• d40c7c4 Updated Rector to commit e4708c58a4ddb167511d61dff636d9edcdd0e805
• c050377 Updated Rector to commit 69a3e31e443dc9610e675ee2ac380cd8f6581a4c
• f253bfe Updated Rector to commit 6a4d7178cc23656fabc4ea31a8d1673cdfde6e37
• cfe590f Updated Rector to commit 147c96190e99909c71c2d920a83ae96cc9b3bd57
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
composer/mimmi20/coding-standard	>= 5.2.40, < 6.0.0	Unknown	Unknown
composer/phpstan/phpstan	>= 1.11.10, < 2.0.0	🟢 6.5	Details Check Score Reason Code-Review ⚠️ 2 Found 7/28 approved changesets -- score normalized to 2 Maintained 🟢 10 30 commit(s) and 24 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases 🟢 8 5 out of the last 5 releases have a total of 5 signed artifacts. Dangerous-Workflow ⚠️ -1 no workflows found Binary-Artifacts 🟢 10 no binaries found in the repo Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ -1 No tokens found Vulnerabilities 🟢 10 0 existing vulnerabilities detected Fuzzing ⚠️ 0 project is not fuzzed SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Pinned-Dependencies ⚠️ -1 no dependencies found Security-Policy 🟢 10 security policy file detected
composer/rector/rector	>= 1.2.3, < 2.0.0	🟢 4.8	Details Check Score Reason Code-Review ⚠️ 0 Found 0/30 approved changesets -- score normalized to 0 Maintained 🟢 10 30 commit(s) and 25 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Signed-Releases ⚠️ -1 no releases found Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Token-Permissions ⚠️ -1 No tokens found Dangerous-Workflow ⚠️ -1 no workflows found Packaging ⚠️ -1 packaging workflow not detected Fuzzing ⚠️ 0 project is not fuzzed Security-Policy ⚠️ 0 security policy file not detected SAST ⚠️ 0 no SAST tool detected Binary-Artifacts 🟢 9 binaries present in source code Pinned-Dependencies ⚠️ -1 no dependencies found Vulnerabilities 🟢 10 0 existing vulnerabilities detected

Scanned Manifest Files

composer.json

• mimmi20/coding-standard@>= 5.2.40, < 6.0.0
• phpstan/phpstan@>= 1.11.10, < 2.0.0
• rector/rector@>= 1.2.3, < 2.0.0
• mimmi20/coding-standard@>= 5.2.39, < 6.0.0
• phpstan/phpstan@>= 1.11.9, < 2.0.0
• rector/rector@>= 1.2.2, < 2.0.0

[codeclimate]

Code Climate has analyzed commit 0fdab56 and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (50% is the threshold).

This pull request will bring the total coverage in the repository to 100.0% (0.0% change).

View more on Code Climate.