1
0
mirror of https://github.com/danog/psalm.git synced 2024-11-27 12:55:26 +01:00
Commit Graph

87 Commits

Author SHA1 Message Date
dependabot[bot]
adad16e980
Bump mheap/github-action-required-labels from 3 to 4
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 3 to 4.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v3...v4)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-04-03 07:59:36 +00:00
Bruce Weirdan
44ffd5fb46
Merge pull request #9492 from weirdan/refuse-invalid-php-versions 2023-03-12 02:58:53 -04:00
Bruce Weirdan
c917826ff8
Pass COMPOSER_ROOT_VERSION to composer update
when we don't have full git history
2023-03-12 02:15:47 -04:00
Bruce Weirdan
08add38449
Optimize composer caching
Previously our composer package cache would not be updated because we
had no `composer.lock` (which hash is used as part of the cache key).

Generating `composer.lock` (but not installing packages) before we check
the cache fixes this.
2023-03-12 02:08:04 -04:00
Bruce Weirdan
ec4f8ebaa3
Refuse to use PHP versions we did not request
There were a number of test failures caused by setup-php failing to
install the required PHP version. While we certainly should fix our
failing tests, we also need to be sure which PHP version we're using.

This PR does exactly that.
2023-03-12 01:45:23 -04:00
484043a5a1 Enable JIT 2023-02-20 13:55:06 +01:00
a01c634878 Run tests with opcache 2023-02-20 13:50:12 +01:00
Alies Lapatsin
86fe34bb52 Run assertions on CI 2023-02-16 10:45:42 +01:00
Bruce Weirdan
ffb393ca97
Switch shell instead of tweaking quotes 2023-02-09 14:42:22 -04:00
Bruce Weirdan
89024ffbc2
Quote paths 2023-02-09 03:54:25 -04:00
Bruce Weirdan
c7ef4580c3
Update workflows to use non-deprecated method offf setting step output
See https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
2023-02-09 03:35:58 -04:00
dependabot[bot]
478422e010
Bump mheap/github-action-required-labels from 2 to 3
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 2 to 3.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v2...v3)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-02 07:04:00 +00:00
Bruce Weirdan
7dd25b46d8
Fix missing version in PHARs build on GA
We were overriding the root version with COMPOSER_ROOT_VERSION, so all
PHARs had `dev-master` as the version for `vimeo/psalm` baked in.

Fixed vimeo/psalm#7606
2022-12-23 17:26:39 -04:00
Corey Taylor
d6eca8c056 Verify nullable callmap parameters 2022-12-23 06:04:35 -06:00
dependabot[bot]
a30622bfb5
Bump fkirc/skip-duplicate-actions from 4.0.0 to 5.3.0
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 4.0.0 to 5.3.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v4.0.0...v5.3.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-05 07:05:39 +00:00
orklah
74d37452ee Test CI on 8.2 2022-11-25 03:43:24 -04:00
7b6e09afc9 Merge branch 'merge_4.x' into immutable_readonly_3 2022-10-17 12:58:41 +02:00
748a74bb2c Merge remote-tracking branch 'origin/4.x' into HEAD 2022-10-16 13:41:27 +02:00
3abd0b961f Immutable Unions 2022-10-03 10:45:36 +02:00
Alex
a6710791e4
Update build-phar.yml
Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
2022-09-02 19:16:42 +01:00
AndrolGenhald
285740a753 Merge branch '4.x' 2022-07-07 15:01:38 -05:00
orklah
b1568920ee
Merge pull request #8210 from vimeo/dependabot/github_actions/actions/checkout-3
build(deps): bump actions/checkout from 2 to 3
2022-06-30 19:30:34 +02:00
orklah
fdb664fe1b
Merge pull request #8209 from vimeo/dependabot/github_actions/actions/cache-3
build(deps): bump actions/cache from 2 to 3
2022-06-30 19:18:33 +02:00
orklah
cf8f0a0734
Merge pull request #8208 from vimeo/dependabot/github_actions/fkirc/skip-duplicate-actions-4.0.0
build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0
2022-06-30 19:18:13 +02:00
dependabot[bot]
005d3e2f50
build(deps): bump actions/checkout from 2 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:08 +00:00
dependabot[bot]
236c24faea
build(deps): bump actions/cache from 2 to 3
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:06 +00:00
dependabot[bot]
206a903e46
build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 3.4.0 to 4.0.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v3.4.0...v4.0.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:02 +00:00
dependabot[bot]
f4e518c350
build(deps): bump mheap/github-action-required-labels from 1 to 2
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 1 to 2.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v1...v2)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:04:59 +00:00
orklah
ebb2ca2b3b
Merge pull request #8203 from turrisxyz/Dependabot-GitHub-Actions
chore: Included githubactions in the dependabot config
2022-06-30 19:04:39 +02:00
naveen
4c9747203e chore: Included githubactions in the dependabot config
This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-06-30 01:29:15 +00:00
naveen
bd50c4e7b0 chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-06-28 00:29:16 +00:00
Sam Mousa
037c9ed118
ci: run tests on php 8.1 2022-06-14 15:29:46 +02:00
Bruce Weirdan
8455d71a9b Run Shepherd with 8.0
Because installing packages with 8.1 and checking them as if we're
running 7.1 just doesn't work.
2022-05-29 23:34:06 +03:00
Bruce Weirdan
c3ea97949d
Fix syntax check failures
They were caused by installing packages with `--ignore-platform-reqs`
which brought PHP 8.1 autoloaded packages and caused fatal errors when
running php-parallel-lint. Instead of ignoring platform requirements we
now remove packages that are incompatible with PHP 7.1 (phpunit and its
dependents).
2022-05-29 00:24:11 -04:00
Bruce Weirdan
9784fe4999
Use lowest supported PHP version for shepherd run
Having Psalm installed under 8.1 leads to installing composer
dependencies that use PHP syntax incompatible with 7.4, however Psalm
analyzes itself using 7.4 parser.
2022-05-28 16:51:17 -04:00
Bruce Weirdan
220d656706
Added backward compatibility check 2022-02-04 04:15:32 +02:00
orklah
2966f1c9d4
Merge pull request #7107 from AndrolGenhald/feature/5482-load-extensions-based-on-composer-config
Enable extensions based on composer.json instead of those loaded at runtime (fixes #5482).
2022-01-28 18:45:52 +01:00
AndrolGenhald
35353c6931 Re-add failing assert, enable assertions on CI. 2022-01-27 21:29:43 -06:00
AndrolGenhald
4672e5a324 Disable all PHP extensions for CI except those required by psalm. 2022-01-27 16:30:14 -06:00
AndrolGenhald
2fe4fc397c Enable extensions based on composer.json instead of those loaded at runtime (fixes #5482). 2022-01-27 16:30:14 -06:00
Bruce Weirdan
fa33632958
Bump PHP version to 7.4
Also exclude 8.2+ for now - we don't know if current Psalm version would
be compatible with that.
2022-01-04 10:25:00 +02:00
Bruce Weirdan
b41722ef74
Added 'release:removed' as a valid PR label 2022-01-02 13:41:15 +02:00
Bruce Weirdan
18fbaeeda5
Attempt to avoid timeouts 2021-12-30 14:38:58 +02:00
Bruce Weirdan
1ae2bff5ff
Speed up Windows tests
Enable multiple workers for Windows, just like we do on Linux already.
2021-12-30 14:30:06 +02:00
AndrolGenhald
466696cda4 Remove decimal extension from Windows CI. 2021-12-08 13:39:13 -06:00
AndrolGenhald
5808d4ea83 Add decimal extension to CI. 2021-12-08 12:10:31 -06:00
Bruce Weirdan
d99485671b
Disable coverage (and xdebug) on CI
I'd expect to see some performance gains here.
2021-11-29 08:07:14 +02:00
Bruce Weirdan
08f824228f
Added 'Removed' section to release notes 2021-11-03 22:11:53 +02:00
Bruce Weirdan
72b03dc30b
Added check for release:* labels 2021-10-31 14:45:03 +02:00
Bruce Weirdan
5500ce575a
Add 'documentation' label to Docs category 2021-10-24 01:01:21 +03:00