Bump the phpstan group with 5 updates

[dependabot]

Updates the requirements on phpstan/phpstan, phpstan/phpstan-strict-rules, phpstan/phpstan-nette, spaze/phpstan-disallowed-calls and shipmonk/phpstan-rules to permit the latest version.
Updates phpstan/phpstan to 1.11.3

Release notes

Sourced from phpstan/phpstan's releases.

1.11.3

Improvements 🔧

• Add new *ParameterClosureTypeExtension (#3089), thanks @​canvural!
• DynamicFunctionReturnTypeExtension for the get_debug_type function (#2910), #10558, #10585, thanks @​patrickkusebauch!
• Infer more duplicated array keys (#3058), #6976, thanks @​VincentLanglet!
• Improve explode return type precision (#3096), thanks @​staabm!
• Make assigning property via reference impure (#3082), thanks @​schlndh!
• Support new PHP 8.4 mb_lcfirst, mb_ucfirst function variants (#3095), thanks @​staabm!

Bugfixes 🐛

• Make array_map argument take into account unpack (#2901), #10527, thanks @​ryium!
• Fixes incorrect types reported by parse_url (#2918), #4754, thanks @​ChrisBrenton!
• Ensure $http_response_header is a list<string> (#2959), thanks @​Seldaek!
• Keep numeric-strings in str_repeat() (#2914), #10572, thanks @​staabm!
• Array is non-empty even when in_array is not strict (#2539), #9662, #10228, thanks @​staabm!
• Fix substr() type narrowing for possibly single char result (#3081), #11035, #9804, thanks @​staabm!
• Fix escaping of the error message in various output formatters (#3087), thanks @​mousetail!
• $this cannot be reassigned when passed by reference (#3097), #10477, thanks @​takaram!
• Subtract zero-float when comparing against zero-int (#3102), #5309, thanks @​staabm!
• Fix fatal error on constant('') (#3013), #10867, thanks @​staabm!

Function signature fixes 🤖

• Add new header functions for PHP 8.4 (#3093), thanks @​Seldaek!
• Fix wrong return type for SplFileObject::fgets() (#3103), thanks @​DanielSiepmann!
• Update Locale signatures (#2880), #7855, #8149, thanks @​devnix!
• Fix wrong fread() length parameter type and return type (#3105), thanks @​thg2k!
• ReflectionFunction and ReflectionMethod::getClosure cannot return null (phpstan/phpstan-src@dae9335), #10839
• Make method names non-falsy-string (#3108), thanks @​schlndh!

Internals 🔍

• Add regression test (#3066), #3300, thanks @​herndlm!
• Update phpdoc-parser (#3107)
  • TemplateTagValueNode::$name cannot be empty string (phpstan/phpdoc-parser@fcaefac), thanks @​staabm!
• Fix property descriptions in ReflectionProviderGoldenTest (#3109), thanks @​schlndh!

Commits

• e64220a PHPStan 1.11.3
• fb35d99 Update baselines
• ad4bed9 Fix Laravel tests
• 1310ce9 Updated PHPStan to commit 1310ce93bf4ef94b1fdba1b90f22ccf003599623
• e755cfd Update baselines
• 9d04483 Update Laravel tests
• baac33c Update PMMP baseline
• 29ce55c Updated PHPStan to commit 29ce55c5d33d0c0f0a16a466b35be35f98135d77
• 08dbe82 Updated PHPStan to commit 08dbe8266a29c86093a57e074537f64cecba70f7
• dae9335 Updated PHPStan to commit dae9335075964f197aa5d965b3d38c12788a6405
• Additional commits viewable in compare view

Updates phpstan/phpstan-strict-rules to 1.6.0

Release notes

Sourced from phpstan/phpstan-strict-rules's releases.

1.6.0

• 363f921 - Update lock-closed-issues.yml
• bd4fada - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• c7b4d28 - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 1a51fae - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• b5233d5 - Fix build
• d0dc2f0 - Update README.md
• 85fdc50 - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d0ba5f - Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d33475 - Fix UselessCastRuleTest.
• 2bc3967 - Update metcalfc/changelog-generator action to v4.3.1
• 5981dc4 - Update cbrgm/mastodon-github-action action to v2
• 2090cfc - Update metcalfc/changelog-generator action to v4.2.0
• 1b125fb - Update dessant/lock-threads action to v5
• a3b0404 - Merge branch '1.5.x' into 1.6.x
• 3a67365 - Merge branch '1.5.x' into 1.6.x
• 50aab8d - Open 1.6.x-dev
• aeaa022 - Update actions/checkout action to v4
• b7edb14 - Rename abstract OperandInArithmeticIncrementOrDecrementRuleTest
• 88e714c - BooleanInBooleanAndRule, BooleanInBooleanOrRule - different identifier and description for logical operators
• 477f53a - Error identifiers
• 872bc91 - Removed some errors from RequireParentConstructCallRule - already reported by PHPStan core
• bd3aa8b - Modernized rules with generics and RuleErrorBuilder
• cca41e8 - Require PHPStan 1.11
• 5c143aa - Next-gen coding standard workflow
• a1891b4 - Update dependency slevomat/coding-standard to v8.12.0
• fa91928 - Update dependency slevomat/coding-standard to v8.11.1
• 1b9b85f - Update dependency slevomat/coding-standard to v8.11.0
• 35fda6c - Update dependency slevomat/coding-standard to v8.10.0
• ce264e3 - Update build-cs

Commits

• 363f921 Update lock-closed-issues.yml
• bd4fada Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• c7b4d28 Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 1a51fae Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• b5233d5 Fix build
• d0dc2f0 Update README.md
• 85fdc50 Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d0ba5f Merge remote-tracking branch 'origin/1.5.x' into 1.6.x
• 3d33475 Fix UselessCastRuleTest.
• 2bc3967 Update metcalfc/changelog-generator action to v4.3.1
• Additional commits viewable in compare view

Updates phpstan/phpstan-nette to 1.3.0

Release notes

Sourced from phpstan/phpstan-nette's releases.

1.3.0

• 8af9474 - Update lock-closed-issues.yml
• 64ca079 - Update metcalfc/changelog-generator action to v4.3.1
• f33df82 - Update cbrgm/mastodon-github-action action to v2
• 8fa428f - Update metcalfc/changelog-generator action to v4.2.0
• ed7b777 - Update dessant/lock-threads action to v5
• a144eea - remove phpstan/phpstan-php-parser
• efb5ded - Update actions/checkout action to v4
• 6ec9016 - Add error identifiers
• ea07b96 - Modernized DoNotExtendNetteObjectRule
• a392f55 - Next-gen coding standard workflow
• 12dd284 - Update dependency slevomat/coding-standard to v8.12.0
• 1e2c921 - Update dependency slevomat/coding-standard to v8.11.1
• d13a6c0 - Update dependency slevomat/coding-standard to v8.11.0

Commits

• 8af9474 Update lock-closed-issues.yml
• 64ca079 Update metcalfc/changelog-generator action to v4.3.1
• f33df82 Update cbrgm/mastodon-github-action action to v2
• 8fa428f Update metcalfc/changelog-generator action to v4.2.0
• ed7b777 Update dessant/lock-threads action to v5
• a144eea remove phpstan/phpstan-php-parser
• efb5ded Update actions/checkout action to v4
• 6ec9016 Add error identifiers
• ea07b96 Modernized DoNotExtendNetteObjectRule
• a392f55 Next-gen coding standard workflow
• Additional commits viewable in compare view

Updates spaze/phpstan-disallowed-calls to 3.4.0

Release notes

Sourced from spaze/phpstan-disallowed-calls's releases.

Default error identifiers

• Add default error identifiers, used if not specified/overridden in your custom config (#258)

PHPStan 1.11 added error identifiers and while they were supported by this extension for quite some time (since #97), they were not added by default, only when you've specified them.

This release adds error identifiers everywhere, and they'll be used if you don't specify custom identifiers in your custom config. The full list of identifiers is in the ErrorIdentifiers class here https://github.com/spaze/phpstan-disallowed-calls/blob/main/src/RuleErrors/ErrorIdentifiers.php and they have a disallowed.something format.

Commits

• f7f1dc8 Add default error identifiers, used if not specified (#258)
• f2e46bd Add default error identifiers, used if not specified
• d58806c Can disallow control structures like else, elseif, goto (#257)
• 5b5bef6 Can disallow control structures like else, elseif, goto
• See full diff in compare view

Updates shipmonk/phpstan-rules to 3.0.0

Release notes

Sourced from shipmonk/phpstan-rules's releases.

3.0.0

Breaking changes:

• forbidAssignmentNotMatchingVarDoc: removed as there is better native replacement when bleedingEdge is enabled (#238)
• allowNamedArgumentOnlyInAttributes: removed as it was highly opinionated and did not provide any extra strictness (#238)
• forbidCheckedExceptionInCallable: removed config immediatelyCalledCallables (we now respect native @param-immediately-invoked-callable, see docs) (#240)
• forbidReturnValueInYieldingMethod: option reportRegardlessOfReturnType is now true by default

Improvements

• All rules accepting classnames in its config checks class existence

Dependencies

• phpstan/phpstan now requires at least 1.11.0 (was 1.10.51)
  • 1.11.0 comes with error identifiers (which we support since 2.10.0)

Commits

• af1a026 Bump other phpstan libs (#249)
• c6d2798 forbidCheckedExceptionInCallable: add 🇺🇸 slides link (#248)
• 1f55180 forbidCheckedExceptionInCallable: remove limitation (#247)
• 04cf295 Deny @phpstan-ignore-line in favour of @phpstan-ignore (#246)
• 8ae5cb4 Enable reportPossiblyNonexistentArrayOffset (#245)
• a73bf70 Enable reportAnyTypeWideningInVarTag (#244)
• db3bfcc Always use getKeepVoidType (#242)
• 604e277 Simplify ForbidNotNormalizedTypeRuleTest (#243)
• d3a6576 forbidCheckedExceptionInCallable: replace immediatelyCalledCallables with nat...
• 484a1c0 Generic ignore of some BC promises (#241)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once it's up-to-date and CI passes on it, as requested by @xificurk.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[xificurk]

@dependabot squash and merge

[dependabot]

One of your CI runs failed on this pull request, so Dependabot won't merge it.

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

[xificurk]

@dependabot squash and merge