Bump phan/phan from 1.3.4 to 2.1.0

[dependabot-preview]

Bumps phan/phan from 1.3.4 to 2.1.0.

Changelog

Sourced from phan/phan's changelog.

01 Jun 2019, Phan 2.1.0

New features(CLI, Configs):

• Add more options to configure colorized output. (#2799)

  The environment variable PHAN_ENABLE_COLOR_OUTPUT=1 and the config setting color_issue_messages_if_supported can be used to enable colorized output by default
  for the default output mode (text) when the terminal supports it.

  This can be disabled by setting PHAN_DISABLE_COLOR_OUTPUT=1 or by passing the flag --no-color.

• Colorize output of --help and --extended-help when --color is used or the terminal supports it.
  This can be disabled by setting PHAN_DISABLE_COLOR_OUTPUT=1 or by passing the flag --no-color.

New features(Analysis):

• Support unary and binary expressions on literals/constants in conditions. (#2812)
  (e.g. assert($x === -(1)) and assert($x === 2+2) now infer that $x is -1 and 4, respectively)
• Infer that static variables with no default are null.
• Improve control flow analysis of unconditionally true/false branches.
• Improve analysis of some ways to initialize groups of static variables.
  e.g. static $a = null; static $b = null; if ($a === null) { $a = $b = rand(0,10); } use($a, $b)
  will now also infer that $b is non-null.
• Infer from return new static(); and return $this; that the return type of a method is @return static, not @return self (#2797)
  (and propagate that to inherited methods)
• Fix some false positives when casting array types containing static to types containing the class or its ancestors. (#2797)
• Add PhanTypeInstantiateAbstractStatic and PhanTypeInstantiateTraitStaticOrSelf as lower-severity warnings about return new self() and return new static() (#2797)
  (emitted in static methods of abstract classes)
• Fix false positives passing static to other classes. (#2797)
• Fix false positive seen when static implements ArrayAccess (#2797)

Language Server/Daemon mode:

• Add --language-server-min-diagnostics-delay-ms <ms>, to work around race conditions in some language clients.

20 May 2019, Phan 2.0.0

New features(Analysis):

• Add early support for PHP 7.4's typed properties. (#2314)
  (This is incomplete, and does not support inheritance, assignment, impossible conditions, etc.)
• Change warnings about undeclared $this into a critical PhanUndeclaredThis issue. (#2751)
• Fix the check for PhanUnusedVariableGlobal (#2768)
• Start work on supporting analyzing PHP 7.4's unpacking inside arrays. (e.g. [1, 2, ...$arr1, 5]) (#2779)
  NOTE: This does not yet check all types of errors, some code is unmigrated, and the polyfill does not yet support this.
• Improve the check for invalid array unpacking in function calls with iterable/Traversable parameters. (#2779)

Plugins:

• Improve help messages for internal/dump_fallback_ast.php (this tool may be of use when developing plugins)

Bug fixes:

• Work around issues parsing binary operators in PHP 7.4-dev.
  Note that the latest version of php-ast (currently 1.0.2-dev) should be installed if you are testing Phan with PHP 7.4-dev.

... (truncated)

Commits

• f5c8f86 Merge pull request #2817 from TysonAndre/release-2.1.0
• 7b7d141 Release Phan 2.1.0
• d1e2cf4 Merge pull request #2816 from TysonAndre/update-phan-documentation
• d0d5bfd Add more colors to phan usage messages
• 2aa9c43 Update Phan's documentation pages
• f8bf4b2 Merge pull request #2815 from TysonAndre/colorizing-updates
• b2e4bd9 Support colorizing --help output, disable color of issues by default.
• db305ac Merge pull request #2814 from TysonAndre/fix-unset-check
• 2b9c87e Add tests of new $this()
• d4e48f3 Fix edge cases analyzing dynamic calls with $this/static
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot ignore this [patch|minor|major] version will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

Finally, you can contact us by mentioning @dependabot.

[dependabot-preview]

Superseded by #63.