search

erunion / mill

☴ An annotation-based DSL for documenting a REST API.
MIT License
39 stars 2 forks source link

chore(deps-dev): Bump vimeo/psalm from 3.8.3 to 3.10.1 #274

Closed dependabot-preview[bot] closed 4 years ago

dependabot-preview[bot] commented 4 years ago

Bumps vimeo/psalm from 3.8.3 to 3.10.1.

Release notes

Sourced from vimeo/psalm's releases.

Fix astract method call false positive

A newly-introduced check caused a false-positive with perfectly valid code, so this is a small release to bump (#3007)

Improve help messages

Features

Including links in issue output

Some of Psalm's error messages may not be immediately clear to the user. Psalm's default console output now includes links to help documents that provide more context (#2977, #2978):

ERROR: InvalidArgument - somefile.php:8:19 - Argument 1 of getAttribute expects string, int provided (see https://psalm.dev/004)

Other features

  • @ArSn added support for customising Psalter output – by default it inserts two newlines between different docblock sections, but with --add-newline-between-docblock-annotations=false that behaviour is disabled.
  • @ragboyjr added inner closure signature inference for functions that return a closure, allowing you to write fewer docblocks - see #2896 for more
  • if ($expression_that_evaluates_to_true) and if ($expression_that_evaluates_to_false) are now flagged as errors
  • @caugner and @yaegassy improved the documentation around Generator types and the LSP mode, respectively
  • --diff mode now will look at file contents as well as modification time to determine whether it has changed - thanks @bendavies (#2991))
  • @ShiraNai7 improved the return type for parse_url(), making it a little more safe (#2955)

Bugfixes

  • Prevent breakages when analysing files with CRLF line endings (#2953)
  • treat Exception::getMessage as mutation-free (#2956)
  • prevent subclasses overriding final methods (#2958)
  • fixed a couple of unreferenced var false-positives (#2970, #2954)
  • detect assigning collections of mutable objects inside an immutable class (#2946)
  • Don't emit TooManyArguments where one of a union accepts more than the other (#946, #1843)
  • Do more to understand whether the current context has already exited (#2920)
  • Improve handling of special arrray types like lists after passing into a function that unpacks array args (#2982)
  • ignore MixedReturnTypeCoercion when a non-mixed Generator send param is given (#2987)
  • fix erroneous InvalidStaticInvocation when @mixin implements same methods as a parent class (#2989)
  • @LeSuisse improved the params for sodium_base642bin() (#2997)
  • @kelunik added a better return type for Generator::throw and allowed Error to be extended (#3001, #3002)
  • reset property types when analysing a closure defined in a class (#3004)

More bugfixes

  • improve handling of templated methods inherited from grandparent interface (#2928)
  • @dq5studios fixed JUnit output validation issues
  • @smelesh fixed an issue where where chained exception throwing wasn't handled correctly
  • added support for bitwise class constant references (#2943)
  • improved return type of array_splice to support lists better (#2942)
  • allow class-string<self> to be fleshed out when comparing types (#2941)
  • DateTimeZone is now treated as immutable (#2930)
  • Improve handling of complex templated properties (#2935)
  • Don’t crash when attempting to unpack a callable object-like array (#2932)
  • Fix array offset assignment when using ??= (#2940)
  • @leightonthomas fixed an issue where @return true actually returning false wasn't reported (#2914)
  • Allow conditionally-defined traits where more than one is defined in a given file (#2951)
... (truncated)
Commits
  • eeed5ec Only prevent AbstractMethodCall on direct calls
  • 2043e85 Increase header weight
  • 6058725 Add prototype for conditional return type
  • 2669434 Fix unknown variable
  • 6746f1c Fix #3004 - reset property types inside a closure defined in a class
  • c986cdf Allow edge-case of by-reference assignment with unitiliazed property
  • a7affbe Add \Error stub (#3002)
  • dd9924e Fix Generator::throw return type (#3001)
  • e557933 Add explanation for MixedMethodCall
  • e6a0fe0 Add a better description to PossiblyInvalidArgument
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language - `@dependabot badge me` will comment on this PR with code to add a "Dependabot enabled" badge to your readme Additionally, you can set the following in your Dependabot [dashboard](https://app.dependabot.com): - Update frequency (including time of day and day of week) - Pull request limits (per update run and/or open at any time) - Out-of-range updates (receive only lockfile updates, if desired) - Security updates (receive only security updates, if desired)
dependabot-preview[bot] commented 4 years ago

Superseded by #282.