composer(deps-dev): bump the version-updates group with 2 updates

[dependabot]

Updates the requirements on mimmi20/coding-standard and phpstan/phpstan to permit the latest version.
Updates mimmi20/coding-standard to 5.2.43

Commits

• b9e442b Merge pull request #549 from mimmi20/dependabot/composer/master/friendsofphp/...
• 43fae10 composer(deps): update friendsofphp/php-cs-fixer requirement
• 871eaae Merge pull request #548 from mimmi20/dependabot/github_actions/master/version...
• 201b377 github-actions: bump suzuki-shunsuke/github-action-renovate-config-validator
• 97f0316 Merge pull request #547 from mimmi20/dependabot/composer/master/version-updat...
• de315c4 composer(deps-dev): update tomasvotruba/unused-public requirement
• See full diff in compare view

Updates phpstan/phpstan to 1.12.1

Release notes

Sourced from phpstan/phpstan's releases.

1.12.1

Bleeding edge 🔪

• Check if required file exists (#3294), #3397, thanks @​Bellangelo!
• Check generics @method @template tags above traits (phpstan/phpstan-src@aadbf62)
• Check @mixin PHPDoc tag above traits (phpstan/phpstan-src@0d0de94)

If you want to see the shape of things to come and adopt bleeding edge features early, you can include this config file in your project's phpstan.neon:

includes:
	- vendor/phpstan/phpstan/conf/bleedingEdge.neon

Of course, there are no backwards compatibility guarantees when you include this file. The behaviour and reported errors can change in minor versions with this file included. Learn more

Improvements 🔧

• Allow dot-prefixed config files (#3354), thanks @​sreichel!
  • Respect dist order over dot order (#3379), thanks @​VincentLanglet!
• Update PhpStorm stubs + refactor WithoutSideEffectsRule classes (#3377), thanks @​VincentLanglet!
• TypeSpecifier: Narrow (bool) $expr like $expr != false (#3380), #8881, #7685, #6006, #10528, thanks @​staabm!
• TypeSpecifier: Narrow (string) $expr like $expr != false (#3387), thanks @​staabm!
• TypeSpecifier: Narrow (int) $expr like $expr != false (#3384), thanks @​staabm!
• TypeSpecifier: Narrow (float) $expr like $expr != false (#3391), thanks @​staabm!
• Add missing rule to StubValidator (phpstan/phpstan-src@085fcf4)
• Support @mixin above traits (phpstan/phpstan-src@f5e2e32)

Bugfixes 🐛

• Fix array_filter with callback optional persistance (#3366), #11570, thanks @​robotomarvin!
• RegexArrayShapeMatcher - infer constant string types in alternations (#3369), #11222, thanks @​staabm!
• RegexArrayShapeMatcher - improve type inference in alternations (#3375), thanks @​staabm!
• Fix error on offset assignment to specialized strings (#3365), #11572, thanks @​staabm!
• Narrow string on strlen() == and === comparison with integer range (#3342), #11548, thanks @​staabm!
• Fix get_debug_type produces wrong type for anonymous classes with parent (#3374), #11562, thanks @​patrickkusebauch!
• Fix preserving list when setting union offset type to a ConstantArrayTypeBuilder (#3382), thanks @​VincentLanglet!
• Fix preg_replace() return type (#3338), #11547, thanks @​staabm!
• Detect function variadic-ness anywhere deep in the declaration file (#3370), #11559, #4753, thanks @​staabm!
• Add DateTimeSubMethodThrowTypeExtension (#3378), #11503, thanks @​VincentLanglet!
• Do not report static in PHPDoc tags above traits as an error (phpstan/phpstan-src@777a82a), #11591
• RegexArrayShapeMatcher - Fix alternations containing a $-only case (#3394), #11622, thanks @​staabm!
• Do not report missing implementation abstract method from trait when it's implicitly implemented by enum (phpstan/phpstan-src@c50b71f), #11592
• Fix how well conditional types play with pre-existing @param-out variable after assignment (phpstan/phpstan-src@5892e8d), #11580, #6642

... (truncated)

Commits

• d8ed7ff PHPStan 1.12.1
• 5892e8d Updated PHPStan to commit 5892e8debfbe2f44306e6707c457665784b7dacd
• 9e61f32 Update errors identifiers
• 5909fb2 Updated PHPStan to commit 5909fb2dc78cbee46927c2cb23f7491dfef34165
• 2867030 Update errors identifiers
• c50b71f Updated PHPStan to commit c50b71fd961e9009419b8fddac835b15696f4ff5
• 0f026c5 Update errors identifiers
• f5e2e32 Updated PHPStan to commit f5e2e32932644d61b3745e3b0f2c0910f722a86d
• 058e74f Updated PHPStan to commit 058e74f2b27e8f58669f7fb115741d6b27c50c80
• 5aeb128 Update errors identifiers
• Additional commits viewable in compare view

You can trigger a rebase of this PR by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
composer/mimmi20/coding-standard	>= 5.2.43, < 6.0.0	Unknown	Unknown
composer/phpstan/phpstan	>= 1.12.1, < 2.0.0	🟢 6.4	Details Check Score Reason Code-Review ⚠️ 1 Found 3/28 approved changesets -- score normalized to 1 Maintained 🟢 10 30 commit(s) and 17 issue activity found in the last 90 days -- score normalized to 10 CII-Best-Practices ⚠️ 0 no effort to earn an OpenSSF best practices badge detected License 🟢 10 license file detected Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases 🟢 8 5 out of the last 5 releases have a total of 5 signed artifacts. Packaging ⚠️ -1 packaging workflow not detected Token-Permissions ⚠️ -1 No tokens found Dangerous-Workflow ⚠️ -1 no workflows found Binary-Artifacts 🟢 10 no binaries found in the repo SAST ⚠️ 0 SAST tool is not run on all commits -- score normalized to 0 Fuzzing ⚠️ 0 project is not fuzzed Vulnerabilities 🟢 10 0 existing vulnerabilities detected Pinned-Dependencies ⚠️ -1 no dependencies found Security-Policy 🟢 10 security policy file detected

Scanned Manifest Files

composer.json

• mimmi20/coding-standard@>= 5.2.43, < 6.0.0
• phpstan/phpstan@>= 1.12.1, < 2.0.0
• mimmi20/coding-standard@>= 5.2.42, < 6.0.0
• phpstan/phpstan@>= 1.12.0, < 2.0.0