Bump the dev-dependencies group across 1 directory with 2 updates

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Bumps the dev-dependencies group with 2 updates in the / directory: shipmonk/composer-dependency-analyser and vimeo/psalm.

Updates shipmonk/composer-dependency-analyser from 1.5.0 to 1.8.1

Release notes

Sourced from shipmonk/composer-dependency-analyser's releases.

1.8.1

Fixes

• Fix collisions with extension symbol names (#194, #197, #196, #199)

1.8.0

New features:

• 🚀 Support php extension detection (#118)
  • This will likely report new issues upon upgrade
  • You can disable ext-* analysis via $config->disableExtensionsAnalysis()
• Support NO_COLOR environment variable (#181)
• Cli: suggest nearest option when typo is made (#183)

Fixes:

• Cli: fix options parsing (#184)

1.7.0

New features:

• Support absolute paths in composer autoload sections (#171, @​VincentLanglet)
• Support even zero composer classloaders (#161)
• Print issue counts per error type (#175)
• Add --version cli option (#172, #176)

Fixes:

• Show all usages even when --show-all-usages is combined with --verbose (#160)
• Add missing --ignore-unknown-functions to --help (#159)
• Improve further processing of junit format (#164, #174)

1.6.1

Fixes

• Fix PHP warning with no composer classloader (#150)

1.6.0

New features:

• Read composer's exclude-from-classmap to exclude paths from analysis (#140 by @​LastDragon-ru )
• Support qualified names in global scope (#148)
  • Often used in bundles.php in Symfony applications (#146)

Fixes:

• More specific path has dev/prod mark priority (#142)
• Fix false positive with extension functions with uppercase characters (#144)

1.5.3

Fixes

• Ensure output of junit format is valid xml (#129)
• Check invalid cli options combinations (#131)

1.5.2

Fixes

• Fix unknown function false positive in multi-attribute usages (#124)

... (truncated)

Commits

• 0acd9d9 Avoid collissions with extension names in namespaced code (#199)
• bc01976 Fix named args false positive (#196)
• b655392 Analyse even php extension dependencies (ext-*) (#118)
• 9c43766 More E2E tests (semi-autogenerated) (#190)
• 77f3be3 Readme: we support PHP 8.4 already (#189)
• ae7c8f4 Bump the dev-dependencies group with 3 updates (#188)
• 8f12bd8 CI: run tests even with PHP 8.4 (#179)
• 8d30e53 Update phpstan/phpstan to 1.12 (#186)
• f7e493d Cli: improve option parsing (#184)
• 0fc0b26 Cli: suggest nearest option when typo is made (#183)
• Additional commits viewable in compare view

Updates vimeo/psalm from 5.20.0 to 5.26.1

Release notes

Sourced from vimeo/psalm's releases.

5.26.1

What's Changed

Fixes

• Fix JSON formatter crashes with invalid UTF in error messages by @​weirdan in vimeo/psalm#11092

Full Changelog: vimeo/psalm@5.26.0...5.26.1

5.26.0

What's Changed

Features

• Add mysqli.execute-query as sink for TaintedSql by @​cgocast in vimeo/psalm#11021
• Add TaintedCallable sinks for 4 core generic functions by @​cgocast in vimeo/psalm#11090
• Improve mysql fetch_field* return type by @​MoonE in vimeo/psalm#11009
• Check for psalm.dist.xml as well by @​HypeMC in vimeo/psalm#11031

Fixes

• Change ReflectionParameter::getName() result type to non-empty-string by @​vjik in vimeo/psalm#11037
• Fix mysqli_real_escape_string stub by @​kamil-tekiela in vimeo/psalm#11078
• Fix mysqli_get_client_version by @​kamil-tekiela in vimeo/psalm#11074
• Up the minimum required version of nikic/php-parser to 4.17 by @​chesn0k in vimeo/psalm#10968
• Fix callable/lowercase strings coercion by @​weirdan in vimeo/psalm#11091
• Consistently emit issues for properties on classes with unknown mixins by @​issidorov in vimeo/psalm#11081

New Contributors

• @​chesn0k made their first contribution in vimeo/psalm#10968

Full Changelog: vimeo/psalm@5.25.0...5.26.0

5.25.0

What's Changed

Features

• Casting int-range should keep literals by @​kkmuffme in vimeo/psalm#10941
• Update help panel by @​llaville in vimeo/psalm#11000
• Add support for phpstan-pure by @​VincentLanglet in vimeo/psalm#10975
• Precise preg_match_all return type by @​VincentLanglet in vimeo/psalm#10969

Fixes

• Fix-GH-10933-And-GH-10951 by @​jack-worman in vimeo/psalm#10953
• redis: add possible types for Redis#auth method by @​boesing in vimeo/psalm#10934
• Avoid false positive about array which are non-callable by @​VincentLanglet in vimeo/psalm#10935
• Fix literal-string|non-empty-literal-string by @​VincentLanglet in vimeo/psalm#10930
• Fix signature of Locale::canonicalize. by @​ADmad in vimeo/psalm#11010

New Contributors

• @​llaville made their first contribution in vimeo/psalm#11000

... (truncated)

Commits

• d747f65 Merge pull request #11092 from weirdan/fix-invalid-utf8-output-in-json-reports
• bb57f39 Fix JSON formatter crashes with invalid UTF in error messages
• 4787eaf Merge pull request #11081 from issidorov/regression-tests-with-undefined-mixin
• 8b528ad Merge pull request #11091 from weirdan/callable-and-lowercase-strings-are-coe...
• b6cea6e Fix callable/lowercase strings coercion
• 2a64d1c Merge pull request #10968 from chesn0k/chesn0k-patch-1
• 3c13a5b Merge pull request #11031 from HypeMC/check-for-psalm.dist.xml-as-well
• c2bdb40 Merge pull request #11009 from MoonE/mysqli-fetch-field
• 10a987b Merge pull request #11074 from kamil-tekiela/mysqli_get_client_version
• 4324122 Merge pull request #11078 from kamil-tekiela/mysqli_real_escape_string
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

The following labels could not be found: dependencies.

[github-actions]

🏰 Composer Production Dependency changes 🏰

Prod Packages	Operation	Base	Target	Link
doctrine/deprecations	Upgraded	1.1.2	1.1.4	Compare
nikic/php-parser	Upgraded	v4.19.1	v4.19.4	Compare
phpdocumentor/type-resolver	Upgraded	1.8.2	1.10.0	Compare
phpstan/phpdoc-parser	Upgraded	1.25.0	1.33.0	Compare
psr/log	Upgraded	3.0.0	3.0.2	Compare
symfony/console	Upgraded	v6.4.12	v6.4.15	Compare
symfony/deprecation-contracts	Upgraded	v3.5.0	v3.5.1	Compare
symfony/filesystem	Upgraded	v6.4.12	v6.4.13	Compare
symfony/service-contracts	Upgraded	v3.5.0	v3.5.1	Compare
symfony/string	Upgraded	v6.4.12	v6.4.15	Compare
ergebnis/composer-normalize	Removed	2.45.0	-	Compare
ergebnis/json	Removed	1.4.0	-	Compare
ergebnis/json-normalizer	Removed	4.8.0	-	Compare
ergebnis/json-pointer	Removed	3.6.0	-	Compare
ergebnis/json-printer	Removed	3.7.0	-	Compare
ergebnis/json-schema-validator	Removed	4.4.0	-	Compare
justinrainbow/json-schema	Removed	v5.2.13	-	Compare
localheinz/diff	Removed	1.2.0	-	Compare

[github-actions]

🚧 Composer Development Dependency changes 🚧

Dev Packages	Operation	Base	Target	Link
amphp/amp	Upgraded	v2.6.2	v2.6.4	Compare
amphp/byte-stream	Upgraded	v1.8.1	v1.8.2	Compare
composer/semver	Upgraded	3.4.0	3.4.3	Compare
ergebnis/composer-normalize	New	-	2.45.0	Compare
ergebnis/json	New	-	1.4.0	Compare
ergebnis/json-normalizer	New	-	4.8.0	Compare
ergebnis/json-pointer	New	-	3.6.0	Compare
ergebnis/json-printer	New	-	3.7.0	Compare
ergebnis/json-schema-validator	New	-	4.4.0	Compare
felixfbecker/language-server-protocol	Upgraded	v1.5.2	v1.5.3	Compare
justinrainbow/json-schema	New	-	v5.2.13	Compare
localheinz/diff	New	-	1.2.0	Compare
netresearch/jsonmapper	Upgraded	v4.2.0	v4.5.0	Compare
phpdocumentor/reflection-docblock	Upgraded	5.4.1	5.6.1	Compare
sebastian/diff	Upgraded	5.1.0	5.1.1	Compare
shipmonk/composer-dependency-analyser	Upgraded	1.5.0	1.8.1	Compare
spatie/array-to-xml	Upgraded	3.2.2	3.3.0	Compare
symfony/process	Upgraded	v6.4.12	v6.4.15	Compare
vimeo/psalm	Upgraded	5.20.0	5.26.1	Compare

[dependabot]

This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.

To ignore these dependencies, configure ignore rules in dependabot.yml