Bump automattic/vipwpcs from 2.3.3 to 3.0.1

[dependabot[bot]]

Bumps automattic/vipwpcs from 2.3.3 to 3.0.1.

Release notes

Sourced from automattic/vipwpcs's releases.

3.0.1

Increases requirements for PHPCS from 3.7.2 to 3.9.2 for improved PHP 8.2 and PHP 8.3 support. Please ensure you run composer update automattic/vipwpcs --with-dependencies to benefit from this.

Removed

• Functions/RestrictedFunctions:
  • #812: Remove restricting term_exists().
  • #814: Remove restricting get_page_by_title().
  • #817: Remove restricting get_page_by_path().

Changed

• #799: Classes/DeclarationCompatibility: Sync signature definitions with WP Core.

Full Changelog: https://github.com/Automattic/VIP-Coding-Standards/compare/3.0.0...3.0.1

3.0.0

Props: @​GaryJones, @​jrfnl

This release requires WordPressCS 3.0.0. It is not compatible with WordPressCS 2.x. Users should read the WordPressCS 3.0 upgrade guide for end-users.

Increases requirements for PHPCS from 3.7.1 to 3.7.2.

The tagged releases branch is now main instead of master.

Added

• #777: 3.0: start using PHPCSUtils.
• #779: 3.0: support WordPressCS 3.0.

Changed

• #780: Performance/WPQueryParams: defer to the parent sniff.
  • Two error codes changed:
    • WordPressVIPMinimum.Performance.WPQueryParams.PostNotIn is now WordPressVIPMinimum.Performance.WPQueryParams.PostNotIn_post__not_in.
    • WordPressVIPMinimum.Performance.WPQueryParams.SuppressFiltersTrue is now WordPressVIPMinimum.Performance.WPQueryParams.SuppressFilters_suppress_filters.

Removed

• #774: Performance/BatcacheWhitelistedParams: remove the sniff.
• #775: Compatibility/Zoninator: remove the sniff.
• #776: Variables/VariableAnalysis: remove the sniff.

Fixed

• #784: Performance/WPQueryParams: prevent false positives for 'exclude' with get_users().
• #788: Security/Mustache: prevent false positives on block editor templates.

Maintenance

• #778: CS: improve use statements.
• #781: Performance/NoPaging: add extra tests.
• #782: GH Actions: minor tweaks to the composer options used.
• #783: Hooks/AlwaysReturnInFilter: remove redundant condition.
• #785: Docs: remove redundant @package tags.
• #786: Add PHPStan to QA checks.
• #787: GH Actions: tweak the way the PHPCS/WPCS versions are set.

... (truncated)

Changelog

Sourced from automattic/vipwpcs's changelog.

[3.0.1] - 2024-05-14

Props: @​GaryJones, @​jrnfl, @​terriann, @​rebeccahum

Increases requirements for PHPCS from 3.7.2 to 3.9.2 for improved PHP 8.2 and PHP 8.3 support. Please ensure you run composer update automattic/vipwpcs --with-dependencies to benefit from this.

Removed

• Functions/RestrictedFunctions:
  • #812: Remove restricting term_exists().
  • #814: Remove restricting get_page_by_title().
  • #817: Remove restricting get_page_by_path().

Changed

• #799: Classes/DeclarationCompatibility: Sync signature definitions with WP Core.

Maintenance

• #797: GH: Add initial dependabot config file.
• GH Actions:
  • #798: Bump actions/checkout to 4 from 3.
  • #802: Minor tweaks of updating an incorrect URL and adding names to steps.
  • #803: Builds against PHP 8.3 can no longer fail, but 8.4 can.
  • #818: Add workaround for intermittent apt-get update issue.
• Composer:
  • #805: Raise minimum version for better PHP 8.2 support.
  • #805: Up the minimum PHPCSExtra version to 1.2.1.
  • #821: Up the minimum PHPCSUtils version to 1.0.11.
  • #821: Up the minimum PHPCS version to 3.9.2.
  • #821: Up the minimum WPCS version to 3.1.0.
  • #821: Up the minimum PHPCSVariableAnalysis version to 2.11.18.
• Docs:
  • #805: Update references to PHPCS under PHPCSStandards, as squizlabs version is abandoned.
  • #808: Update Composer installation instructions.
  • #811: Update old URLs.
• #809: Unit tests: Allow for PHPUnit 8 and 9.

[3.0.0] - 2023-09-05

Props: @​GaryJones, @​jrfnl

This release requires WordPressCS 3.0.0. It is not compatible with WordPressCS 2.x. Users should read the WordPressCS 3.0 upgrade guide for end-users.

Increases requirements for PHPCS from 3.7.1 to 3.7.2.

The tagged releases branch is now main instead of master.

Added

• #777: 3.0: start using PHPCSUtils.
• #779: 3.0: support WordPressCS 3.0.

Changed

... (truncated)

Commits

• 2b1d206 Merge pull request #822 from Automattic/develop
• 9e91528 Merge pull request #820 from Automattic/3.0.1/changelog
• 65ef15a Add changelog for 3.0.1 release
• 627c179 Merge pull request #821 from Automattic/3.0.1/update-dependencies
• b14551f Update dependencies per https://github.com/Automattic/VIP-Coding-Standards/pu...
• 463dc53 Merge pull request #818 from Automattic/feature/ghactions-xmllint-bypass-apt-...
• f60ed12 GH Actions: work around intermittent apt-get errors
• 7d3768c Merge pull request #817 from Automattic/deprecate/get_page_by_path
• ab56662 Deprecate suggesting using wpcom_vip_get_page_by_path
• 8687674 Merge pull request #815 from Automattic/dependabot/github_actions/ramsey/comp...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[sonarcloud[bot]]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud