Bump ramsey/composer-install from 1 to 2

[dependabot]

Bumps ramsey/composer-install from 1 to 2.

Release notes

Sourced from ramsey/composer-install's releases.

2.0.0

Added

• Use --prefer-stable with lowest dependencies (#178)
• Allow use of a custom cache key (#167)
• Allow ability to ignore the cache

Changed

• Switch to a composite action from a JavaScript action

Fixed

• Fix case where working-directory did not run composer install in the correct working directory (#187)
• Fix problems with retrieving cache with parallel builds (#161, #152)
• Fix problems restoring from cache on Windows (#79)

1.3.0

• Support passing --working-dir as part of composer-options

1.2.0

• Support Composer working-directory option for when composer.json is in a non-standard location.
• Add operating system name to the cache key.

1.1.0

Display Composer output with ANSI colors.

1.0.3

Patch release for dependency updates.

1.0.2

• Use the GitHub cache action directly to avoid duplication of code/effort.
• Turn on output of Composer command to provide feedback in the job log
• Use Composer cache-dir instead of cache-files-dir

1.0.1

Rewrite and refactor as a JavaScript action.

Commits

• 83af392 ✨ Add new custom-cache-suffix option (#239)
• 7f9021e Fix use of deprecated set-output command (#238)
• 4617231 Tests: update the included composer.phar from v 2.2.2 to 2.2.18 (#237)
• 72896eb Add dependabot configuration file (#227)
• 69e970d GH Actions: version update for codecov action runner (#226)
• e3612f6 GH Actions: version update for actions/cache (#224)
• d515102 GH Actions: version update for various predefined actions (#222)
• 6085843 GH Actions: re-work the integration tests (#221)
• f680dac test: add PHP path back to command, as well as debug message
• 3c51967 test: ensure we use the alternate composer location
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

> **Note** > Automatic rebases have been disabled on this pull request as it has been open for over 30 days.

[dependabot]

The following labels could not be found: dependencies.