* Twig print should not be a sink
* Add links to the test cases for tainting twig
* Update psalm
* Force typing of Request:: to ensure taint detection
* Fix test using old hooks mechanism.
* Taint Request::get and Response::__construct
* Taint Request::request, Request::query & Request::cookies
* Taint Request::headers (only for the user-agent header)
* Taint HeaderBag::__toString (and a fix of psalm taint api usage)
* Taint InputBag::all
* Fix type resolving
* Bump psalm requirement
* refactoring first scenario outline
* Refactor RequestTaint
* no message
* Taint HeaderBag using the MethodReturnTypeProviderInterface
* Skip tests when dependencies too low
* Taint Request::get and Response::__construct
* Taint Request::headers (only for the user-agent header)
* wip
* Try using MethodReturnTypeProviderInterface
* Compiling templates
* Make it work using fake call
* Explicitely load compliled twig files
* wip
* Add more direct way of tainting output
* wip
* Add real twig template analyzer
* Refactor
* Little fixes
* Change namespace from Taint to Twig
* Refactoring
* Some type fixing
* Fix CS
* Guess template-to-cache mapping instead of using the twig env.
* Fix typing
* Last minutes changes
* Change test group
* Update README
* fix TemplateFileAnalyzer path in readme
Co-authored-by: Farhad Safarov <farhad.safarov@gmail.com>
Co-authored-by: Brown <github@muglug.com>
