Skip to content

Bump the dev-dependencies group across 1 directory with 5 updates #449

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 4, 2025
Merged

Bump the dev-dependencies group across 1 directory with 5 updates #449

merged 1 commit into from
Nov 4, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Nov 1, 2025
edited
Loading

Bumps the dev-dependencies group with 5 updates in the / directory:

Package From To
friendsofphp/php-cs-fixer 3.87.1 3.89.1
maglnet/composer-require-checker 4.16.1 4.18.0
phpunit/phpunit 12.3.7 12.4.2
symfony/debug-bundle 7.3.0 7.3.5
symfony/web-profiler-bundle 7.3.3 7.3.5

Updates friendsofphp/php-cs-fixer from 3.87.1 to 3.89.1

Release notes

Sourced from friendsofphp/php-cs-fixer's releases.

v3.89.1 Folding Bike

What's Changed

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.89.0...v3.89.1

v3.89.0 Folding Bike

What's Changed

New Contributors

... (truncated)

Changelog

Sourced from friendsofphp/php-cs-fixer's changelog.

Changelog for v3.89.1

  • fix: ComposerJsonReader - fix handling asterisk (#9166)
  • docs: cookbook - update to mention custom fixer option (#9164)
  • DX: add links in cookbook_fixers.rst (#9162)
  • deps: upgrade phpcompatibility/* to alpha of next MAJOR instead of using dev branch, plus other minor upgrades (#9163)

Changelog for v3.89.0

  • feat: autofix "no-return" phpdoc type to "never" (#9073)
  • feat: support keeping strict_types=0 in DeclareStrictTypesFixer (#9121)
  • feat: NoUnneededBracesFixer - remove unneeded braces from imports (#9118)
  • fix: FullyQualifiedStrictTypesFixer - replacing the real FQCN with a non-existent one (#8962)
  • fix: PhpdocToCommentFixer on property hooks (#9123)
  • fix: PhpUnitMethodCasingFixer to not cause a duplicate method declaration (#9124)
  • fix: StaticLambdaFixer - do not make function static when it contains anonymous class having $this in the constructor (#9088)
  • fix: UseArrowFunctionsFixer - do not produce two consecutive whitespace tokens (#9151)
  • UX: better gitlab reporting - add content field (#9152)
  • UX: better gitlab reporting - more user-friendly description field (#9141)
  • UX: better gitlab reporting for location.lines (#9149)
  • UX: Warn if executed php version is higher than the minimum php version defined in composer.json (#9134)
  • chore: add UX title pattern (#9132)
  • chore: explicitly use php interpreter for paraunit (#9126)
  • chore: extend composer scripts (#9127)
  • chore: fix shellcheck installation for Darwin (#9125)
  • chore: replace PHPDocs with assert calls (#9144)
  • deps: bump crate-ci/typos from 1.36.3 to 1.38.1 (#9136)
  • deps: bump phpstan/phpstan from 2.1.29 to 2.1.31 in /dev-tools in the phpstan group (#9129)
  • deps: bump shipmonk/dead-code-detector from 0.13.3 to 0.13.4 in /dev-tools (#9135)
  • deps: bump shipmonk/dead-code-detector from 0.13.4 to 0.13.5 in /dev-tools (#9146)
  • deps: bump the phpstan group across 1 directory with 2 updates (#9101)
  • deps: use shipmonk/composer-dependency-analyser instead of icanhazstring/composer-unused and maglnet/composer-require-checker (#9106)
  • docs: fix docs for @autoPHPUnitMigration:riskyset (#9147)
  • docs: improve descriptions for NoTrailingWhitespace* fixers (#9117)
  • docs: more explicit docs on --rules (#9114)
  • docs: update usage documentation for describe --expand and @ (#9119)
  • DX: Fix composer qa script (#9138)
  • refactor: --option value => --option=value (#9131)
  • test: Fix result randomness in RunnerTest for MacOS (#9139)

Changelog for v3.88.2

  • docs: describe command - allow to describe config in use (#9103)
  • docs: describe command - allow to expand sets (#9104)

Changelog for v3.88.1

... (truncated)

Commits
  • f34967d prepared the 3.89.1 release
  • 65eb712 fix: ComposerJsonReader - fix handling asterisk (#9166)
  • a2a5aee docs: cookbook - update to mention custom fixer option (#9164)
  • 1aa1db2 DX: add links in cookbook_fixers.rst (#9162)
  • 2459d9a deps: upgrade phpcompatibility/* to alpha of next MAJOR instead of using de...
  • e70478f bumped version
  • 4dd6768 prepared the 3.89.0 release
  • 949f42c feat: NoUnneededBracesFixer - remove unneeded braces from imports (#9118)
  • 141f70d UX: better gitlab reporting - more user-friendly description field (#9141)
  • c7b8f8a UX: better gitlab reporting - add content field (#9152)
  • Additional commits viewable in compare view

Updates maglnet/composer-require-checker from 4.16.1 to 4.18.0

Release notes

Sourced from maglnet/composer-require-checker's releases.

4.18.0

Release Notes for 4.18.0

Feature release (minor)

4.18.0

  • Total issues resolved: 0
  • Total pull requests resolved: 4
  • Total contributors: 2

renovate

dependencies,enhancement

4.17.0

Release Notes for 4.17.0

Feature release (minor)

4.17.0

  • Total issues resolved: 0
  • Total pull requests resolved: 8
  • Total contributors: 4

dependencies,enhancement

renovate

dependencies,enhancement,renovate

bug

... (truncated)

Commits
  • de930e8 Merge pull request #582 from maglnet/renovate/doctrine-coding-standard-14.x
  • fe83a0b Update dependency doctrine/coding-standard to v14
  • 12ad9fe Merge pull request #583 from maglnet/renovate/actions-upload-artifact-5.x
  • 611363b Update actions/upload-artifact action to v5
  • 3e84b29 Merge pull request #580 from maglnet/renovate/actions-checkout-5.x
  • 6a0603c Merge pull request #564 from maglnet/feature/stricter-types
  • b9a63b1 Removed CheckCommand#initialize()
  • e2304b6 Do not fail on skipped tests
  • 1f72400 Ignore deprecation warnings caused by third-party dependencies
  • e375009 Render details on all deprecations
  • Additional commits viewable in compare view

Updates phpunit/phpunit from 12.3.7 to 12.4.2

Release notes

Sourced from phpunit/phpunit's releases.

PHPUnit 12.4.2

Changed

  • Skipped tests alone no longer lead to a yellow background for the test result summary

Fixed

  • #6391: Errors during backup of global variables and static properties are not reported

Learn how to install or update PHPUnit 12.4 in the documentation.

Keep up to date with PHPUnit:

  • You can follow @​[email protected] to stay up to date with PHPUnit's development.
  • You can subscribe to the PHPUnit Updates newsletter to receive updates about and tips for PHPUnit.

PHPUnit 12.4.1

Fixed

  • #6364: --filter format used by PhpStorm stopped working
  • #6378: Wrong method name passed to DataProviderMethodCalled event value object

Learn how to install or update PHPUnit 12.4 in the documentation.

Keep up to date with PHPUnit:

  • You can follow @​[email protected] to stay up to date with PHPUnit's development.
  • You can subscribe to the PHPUnit Updates newsletter to receive updates about and tips for PHPUnit.

PHPUnit 12.4.0

Added

  • #6277: Allow tests to opt out of the validation that a data provider method does not provide data sets with more values than a test method accepts
  • #6341: Support for regular expressions with #[IgnoreDeprecations] attribute
  • #6354: Invokable constraints

Deprecated

  • #6284: #[RunClassInSeparateProcess] attribute
  • #6355: Support for version constraint string argument without explicit version comparison operator

Learn how to install or update PHPUnit 12.4 in the documentation.

Keep up to date with PHPUnit:

... (truncated)

Changelog

Sourced from phpunit/phpunit's changelog.

12.4.2 - 2025-10-30

Changed

  • Skipped tests alone no longer lead to a yellow background for the test result summary

Fixed

  • #6391: Errors during backup of global variables and static properties are not reported

12.4.1 - 2025-10-09

Fixed

  • #6364: --filter format used by PhpStorm stopped working
  • #6378: Wrong method name passed to DataProviderMethodCalled event value object

12.4.0 - 2025-10-03

Added

  • #6277: Allow tests to opt out of the validation that a data provider method does not provide data sets with more values than a test method accepts
  • #6341: Support for regular expressions with #[IgnoreDeprecations] attribute
  • #6354: Invokable constraints

Deprecated

  • #6284: #[RunClassInSeparateProcess] attribute
  • #6355: Support for version constraint string argument without explicit version comparison operator
Commits

Updates symfony/debug-bundle from 7.3.0 to 7.3.5

Release notes

Sourced from symfony/debug-bundle's releases.

v7.3.5

Changelog (symfony/debug-bundle@v7.3.4...v7.3.5)

v7.3.4

Changelog (symfony/debug-bundle@v7.3.3...v7.3.4)

Commits
  • 0aee008 Merge branch '6.4' into 7.3
  • 21a61c5 [DebugBundle] Wire DumpDataCollector's webMode argument
  • 30f922e [SecurityBundle] Fix semantic configuration for singulars/plurals in XML
  • See full diff in compare view

Updates symfony/web-profiler-bundle from 7.3.3 to 7.3.5

Release notes

Sourced from symfony/web-profiler-bundle's releases.

v7.3.5

Changelog (symfony/web-profiler-bundle@v7.3.4...v7.3.5)

v7.3.4

Changelog (symfony/web-profiler-bundle@v7.3.3...v7.3.4)

Commits
  • c2ed11c Merge branch '6.4' into 7.3
  • 4c2ab41 [WebProfilerBundle] ”finish” errored requests
  • f305fa4 [WebProfilerBundle] Upgrade mermaid to v11.12.0
  • ee15fe4 [SecurityBundle] Fix semantic configuration for singulars/plurals in XML
  • See full diff in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Nov 1, 2025
@cedric-anne
Copy link
Member

cedric-anne commented Nov 4, 2025

@dependabot rebase

@dependabot
Bump the dev-dependencies group across 1 directory with 5 updates
56bc982 
Bumps the dev-dependencies group with 5 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [friendsofphp/php-cs-fixer](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer) | `3.87.1` | `3.89.1` |
| [maglnet/composer-require-checker](https://github.com/maglnet/ComposerRequireChecker) | `4.16.1` | `4.18.0` |
| [phpunit/phpunit](https://github.com/sebastianbergmann/phpunit) | `12.3.7` | `12.4.2` |
| [symfony/debug-bundle](https://github.com/symfony/debug-bundle) | `7.3.0` | `7.3.5` |
| [symfony/web-profiler-bundle](https://github.com/symfony/web-profiler-bundle) | `7.3.3` | `7.3.5` |



Updates `friendsofphp/php-cs-fixer` from 3.87.1 to 3.89.1
- [Release notes](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/releases)
- [Changelog](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/blob/master/CHANGELOG.md)
- [Commits](PHP-CS-Fixer/PHP-CS-Fixer@v3.87.1...v3.89.1)

Updates `maglnet/composer-require-checker` from 4.16.1 to 4.18.0
- [Release notes](https://github.com/maglnet/ComposerRequireChecker/releases)
- [Commits](maglnet/ComposerRequireChecker@4.16.1...4.18.0)

Updates `phpunit/phpunit` from 12.3.7 to 12.4.2
- [Release notes](https://github.com/sebastianbergmann/phpunit/releases)
- [Changelog](https://github.com/sebastianbergmann/phpunit/blob/12.4.2/ChangeLog-12.4.md)
- [Commits](sebastianbergmann/phpunit@12.3.7...12.4.2)

Updates `symfony/debug-bundle` from 7.3.0 to 7.3.5
- [Release notes](https://github.com/symfony/debug-bundle/releases)
- [Changelog](https://github.com/symfony/debug-bundle/blob/7.3/CHANGELOG.md)
- [Commits](symfony/debug-bundle@v7.3.0...v7.3.5)

Updates `symfony/web-profiler-bundle` from 7.3.3 to 7.3.5
- [Release notes](https://github.com/symfony/web-profiler-bundle/releases)
- [Changelog](https://github.com/symfony/web-profiler-bundle/blob/7.3/CHANGELOG.md)
- [Commits](symfony/web-profiler-bundle@v7.3.3...v7.3.5)

---
updated-dependencies:
- dependency-name: friendsofphp/php-cs-fixer
  dependency-version: 3.89.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: maglnet/composer-require-checker
  dependency-version: 4.18.0
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: phpunit/phpunit
  dependency-version: 12.4.2
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: dev-dependencies
- dependency-name: symfony/debug-bundle
  dependency-version: 7.3.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
- dependency-name: symfony/web-profiler-bundle
  dependency-version: 7.3.5
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: dev-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/composer/dev-dependencies-83403bbc85 branch from c4dd0a9 to 56bc982 Compare November 4, 2025 12:49
@cedric-anne cedric-anne merged commit 03006df into main Nov 4, 2025
1 of 2 checks passed
@cedric-anne cedric-anne deleted the dependabot/composer/dev-dependencies-83403bbc85 branch November 4, 2025 13:10
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@cedric-anne