Skip to content

chore(deps-dev): bump the development-dependencies group with 2 updates#4439

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/composer/development-dependencies-e251b55a66
Closed

chore(deps-dev): bump the development-dependencies group with 2 updates#4439
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/composer/development-dependencies-e251b55a66

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 21, 2026
edited
Loading

Copy link
Copy Markdown
Contributor

Bumps the development-dependencies group with 2 updates: friendsofphp/php-cs-fixer and rector/rector.

Updates friendsofphp/php-cs-fixer from 3.95.7 to 3.95.10

Release notes

Sourced from friendsofphp/php-cs-fixer's releases.

v3.95.10 Adalbertus

What's Changed

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.95.9...v3.95.10

v3.95.9 Adalbertus

What's Changed

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.95.8...v3.95.9

v3.95.8 Adalbertus

What's Changed

Full Changelog: PHP-CS-Fixer/PHP-CS-Fixer@v3.95.7...v3.95.8

Changelog

Sourced from friendsofphp/php-cs-fixer's changelog.

Changelog for v3.95.10

  • fix: TokensAnalyzer - handle T_PUBLIC_SET, T_PROTECTED_SET, T_PRIVATE_SET (#9696)

Changelog for v3.95.9

  • chore: apply class_keyword (#9689)
  • refactor: change Fixers execution order to always-deterministic (#9690)

Changelog for v3.95.8

  • fix: SingleClassElementPerStatementFixer - do not drop modifiers when splitting final constants/properties (#9687)
Commits
  • 93e1ab3 prepared the 3.95.10 release
  • f5ef45e fix: TokensAnalyzer - handle T_PUBLIC_SET, T_PROTECTED_SET, `T_PRIVATE_...
  • 204b56e bumped version
  • 7a6a047 prepared the 3.95.9 release
  • 75a0377 refactor: change Fixers execution order to always-deterministic (#9690)
  • 502de71 chore: apply class_keyword (#9689)
  • 4bc1ed2 bumped version
  • 4140023 prepared the 3.95.8 release
  • 3210545 fix: SingleClassElementPerStatementFixer - do not drop modifiers when split...
  • 34ed5e8 bumped version
  • See full diff in compare view

Updates rector/rector from 2.4.5 to 2.5.1

Release notes

Sourced from rector/rector's releases.

Released Rector 2.5.1

Bugfixes 🐛

  • Skip unused-skip reporting on narrowed runs - no more false "unused skip" noise when running Rector on a subset of paths (#8069)
  • Display skips only on uncached run - skip report shows on real runs, not when results come from cache (#8071)
  • RemoveAlwaysTrueIfConditionRector — avoid scanning whole new statements on dynamic variable checks; moved logic to ExprAnalyzer and bail early on defined variables (#8057)

Released Rector 2.5

New Features 🥳 🎉 🎉 🎉

This release has 3 interesting new features. Let's look at them:

[dx] Report skips that never matched (#8058)

  • What? - like PHPStan's reportUnusedIgnores, but for Rector ->withSkip(). Flags skip entries that never matched anything during the run, so you can delete stale skips.

  • Why? - skips rot. You skip a path/rule to dodge a problem, later the file moves or the rule stops firing there — the skip lingers forever, silently masking nothing. This surfaces dead skips so config stays honest.

// rector.php
return RectorConfig::configure()
    ->withSkip([
        SimplifyUselessVariableRector::class => [
            '*/src/Legacy/*',          // still matches — fine
            '*/NonexistentUnused/*',   // matches nothing — stale
        ],
    ])
    ->reportUnusedSkips();

Run output:

 [OK] Rector is done!
[WARNING] This skip is unused, it never matched any element.
You can remove it from "->withSkip()"

Rector\CodeQuality\Rector\FunctionLike\SimplifyUselessVariableRector => /NonexistentUnused/

[dx] Removing unused imports by default (#8047)

You can update your rector.php config:

 return RectorConfig::configure()
</tr></table>

... (truncated)

Commits
  • 34a9124 Rector 2.5.1
  • 6502d60 Updated Rector to commit df98b3b4e5f024d2260edc233dc9cb4adfe6a3e0
  • b74237c Updated Rector to commit 84ab911ef53267aa1c4a9466064def614e486eea
  • e3c4ee7 Updated Rector to commit 3893ea422afa3fb801ae64fa546c8a2cb24b0f97
  • bdd26a9 Updated Rector to commit 580b374ea3638fd50cf9b98b84445cd9fe53768e
  • 7526bea Rector 2.5.0
  • ac7d3bf Updated Rector to commit 13940f3995ff87d50fa3a145737c17747f8b8fde
  • 670fe88 Updated Rector to commit 613ee136e5f7a956d3c64a73a8d6542d1e387017
  • 7883d5d Updated Rector to commit be60d74cdf29f3184d0c2b7b2ef70a3556eb0d0e
  • 848d154 Updated Rector to commit 07451c9670374512c1692c8b51c7a4b0af0905be
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps-dev): bump the development-dependencies group with 2 updates
7cc06b3 
Bumps the development-dependencies group with 2 updates: [friendsofphp/php-cs-fixer](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer) and [rector/rector](https://github.com/rectorphp/rector).


Updates `friendsofphp/php-cs-fixer` from 3.95.7 to 3.95.10
- [Release notes](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/releases)
- [Changelog](https://github.com/PHP-CS-Fixer/PHP-CS-Fixer/blob/master/CHANGELOG.md)
- [Commits](PHP-CS-Fixer/PHP-CS-Fixer@v3.95.7...v3.95.10)

Updates `rector/rector` from 2.4.5 to 2.5.1
- [Release notes](https://github.com/rectorphp/rector/releases)
- [Commits](rectorphp/rector@2.4.5...2.5.1)

---
updated-dependencies:
- dependency-name: friendsofphp/php-cs-fixer
  dependency-version: 3.95.10
  dependency-type: direct:development
  update-type: version-update:semver-patch
  dependency-group: development-dependencies
- dependency-name: rector/rector
  dependency-version: 2.5.1
  dependency-type: direct:development
  update-type: version-update:semver-minor
  dependency-group: development-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Jun 21, 2026
@dependabot dependabot Bot requested a review from a team as a code owner June 21, 2026 18:03
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Jun 21, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jun 21, 2026

Copy link
Copy Markdown
Contributor Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this Jun 21, 2026
@dependabot dependabot Bot deleted the dependabot/composer/development-dependencies-e251b55a66 branch June 21, 2026 22:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ildyria ildyria ildyria approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@ildyria