dependabot[bot]
49492235fe
Bump actions/checkout from 3 to 4
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-09-11 07:29:32 +00:00
Thomas Bley
1e1ffe164f
#10026 keep running phpcs and php lint with 7.4
2023-07-21 22:50:24 +02:00
Thomas Bley
e82114cfee
#10026 keep running phpcs and php lint with 7.4
2023-07-21 22:46:46 +02:00
Thomas Bley
fc1d3e09ab
#10026 added code style analysis with phpcs to github actions
2023-07-21 21:49:36 +02:00
Thomas Bley
4307bc49e3
#10026 run buuld-phar with php 8.0 in github actions (php 7.4 is out of official support)
2023-07-21 21:49:07 +02:00
Thomas Bley
51058eb45e
#10026 cleanup
2023-07-20 02:02:28 +02:00
Thomas Bley
741d19682a
#10026 cleanup signature for hash_pbkdf2()
2023-07-20 01:43:31 +02:00
Thomas Bley
ee185b9ad8
#10026 cleanup method signatures
2023-07-20 01:28:46 +02:00
Thomas Bley
cbee1e094e
#10026 adapted DateTime tests for DateMalformedStringException in PHP 8.3
2023-07-19 23:52:25 +02:00
Thomas Bley
fffbf75cf8
cleanup
2023-07-19 21:06:35 +02:00
Thomas Bley
1c55437d78
cleanup
2023-07-19 20:51:13 +02:00
Thomas Bley
ba4e40a9f6
cleanup
2023-07-19 20:47:58 +02:00
Thomas Bley
d0605ee765
cleanup
2023-07-19 20:46:50 +02:00
Thomas Bley
e8586a7a35
#10026 test matrix for different php versions and operating systems
2023-07-19 20:42:39 +02:00
Thomas Bley
9eb3c7eb7d
#10026 test matrix for different php versions and operating systems
2023-07-19 20:41:59 +02:00
Thomas Bley
d39013324d
#10026 added GitHub CI for unit tests with PHP 8.2 and 8.3
2023-07-19 20:30:57 +02:00
dependabot[bot]
7a3bb6c7fa
Bump mheap/github-action-required-labels from 4 to 5
...
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels ) from 4 to 5.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases )
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-06-12 07:59:08 +00:00
dependabot[bot]
adad16e980
Bump mheap/github-action-required-labels from 3 to 4
...
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels ) from 3 to 4.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases )
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v3...v4 )
---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-04-03 07:59:36 +00:00
Bruce Weirdan
44ffd5fb46
Merge pull request #9492 from weirdan/refuse-invalid-php-versions
2023-03-12 02:58:53 -04:00
Bruce Weirdan
c917826ff8
Pass COMPOSER_ROOT_VERSION
to composer update
...
when we don't have full git history
2023-03-12 02:15:47 -04:00
Bruce Weirdan
08add38449
Optimize composer caching
...
Previously our composer package cache would not be updated because we
had no `composer.lock` (which hash is used as part of the cache key).
Generating `composer.lock` (but not installing packages) before we check
the cache fixes this.
2023-03-12 02:08:04 -04:00
Bruce Weirdan
ec4f8ebaa3
Refuse to use PHP versions we did not request
...
There were a number of test failures caused by setup-php failing to
install the required PHP version. While we certainly should fix our
failing tests, we also need to be sure which PHP version we're using.
This PR does exactly that.
2023-03-12 01:45:23 -04:00
484043a5a1
Enable JIT
2023-02-20 13:55:06 +01:00
a01c634878
Run tests with opcache
2023-02-20 13:50:12 +01:00
Alies Lapatsin
86fe34bb52
Run assertions on CI
2023-02-16 10:45:42 +01:00
Bruce Weirdan
ffb393ca97
Switch shell instead of tweaking quotes
2023-02-09 14:42:22 -04:00
Bruce Weirdan
89024ffbc2
Quote paths
2023-02-09 03:54:25 -04:00
Bruce Weirdan
c7ef4580c3
Update workflows to use non-deprecated method offf setting step output
...
See https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
2023-02-09 03:35:58 -04:00
dependabot[bot]
478422e010
Bump mheap/github-action-required-labels from 2 to 3
...
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels ) from 2 to 3.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases )
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2023-01-02 07:04:00 +00:00
Bruce Weirdan
7dd25b46d8
Fix missing version in PHARs build on GA
...
We were overriding the root version with COMPOSER_ROOT_VERSION, so all
PHARs had `dev-master` as the version for `vimeo/psalm` baked in.
Fixed vimeo/psalm#7606
2022-12-23 17:26:39 -04:00
Corey Taylor
d6eca8c056
Verify nullable callmap parameters
2022-12-23 06:04:35 -06:00
dependabot[bot]
a30622bfb5
Bump fkirc/skip-duplicate-actions from 4.0.0 to 5.3.0
...
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions ) from 4.0.0 to 5.3.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases )
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v4.0.0...v5.3.0 )
---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-12-05 07:05:39 +00:00
orklah
74d37452ee
Test CI on 8.2
2022-11-25 03:43:24 -04:00
7b6e09afc9
Merge branch 'merge_4.x' into immutable_readonly_3
2022-10-17 12:58:41 +02:00
748a74bb2c
Merge remote-tracking branch 'origin/4.x' into HEAD
2022-10-16 13:41:27 +02:00
3abd0b961f
Immutable Unions
2022-10-03 10:45:36 +02:00
Alex
a6710791e4
Update build-phar.yml
...
Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
2022-09-02 19:16:42 +01:00
AndrolGenhald
285740a753
Merge branch '4.x'
2022-07-07 15:01:38 -05:00
orklah
b1568920ee
Merge pull request #8210 from vimeo/dependabot/github_actions/actions/checkout-3
...
build(deps): bump actions/checkout from 2 to 3
2022-06-30 19:30:34 +02:00
orklah
fdb664fe1b
Merge pull request #8209 from vimeo/dependabot/github_actions/actions/cache-3
...
build(deps): bump actions/cache from 2 to 3
2022-06-30 19:18:33 +02:00
orklah
cf8f0a0734
Merge pull request #8208 from vimeo/dependabot/github_actions/fkirc/skip-duplicate-actions-4.0.0
...
build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0
2022-06-30 19:18:13 +02:00
dependabot[bot]
005d3e2f50
build(deps): bump actions/checkout from 2 to 3
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:08 +00:00
dependabot[bot]
236c24faea
build(deps): bump actions/cache from 2 to 3
...
Bumps [actions/cache](https://github.com/actions/cache ) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases )
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md )
- [Commits](https://github.com/actions/cache/compare/v2...v3 )
---
updated-dependencies:
- dependency-name: actions/cache
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:06 +00:00
dependabot[bot]
206a903e46
build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0
...
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions ) from 3.4.0 to 4.0.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases )
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v3.4.0...v4.0.0 )
---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:02 +00:00
dependabot[bot]
f4e518c350
build(deps): bump mheap/github-action-required-labels from 1 to 2
...
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels ) from 1 to 2.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases )
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v1...v2 )
---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:04:59 +00:00
naveen
bd50c4e7b0
chore: Set permissions for GitHub actions
...
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.
- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions
https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions
https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs
[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/ )
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-06-28 00:29:16 +00:00
Sam Mousa
037c9ed118
ci: run tests on php 8.1
2022-06-14 15:29:46 +02:00
Bruce Weirdan
8455d71a9b
Run Shepherd with 8.0
...
Because installing packages with 8.1 and checking them as if we're
running 7.1 just doesn't work.
2022-05-29 23:34:06 +03:00
Bruce Weirdan
c3ea97949d
Fix syntax check failures
...
They were caused by installing packages with `--ignore-platform-reqs`
which brought PHP 8.1 autoloaded packages and caused fatal errors when
running php-parallel-lint. Instead of ignoring platform requirements we
now remove packages that are incompatible with PHP 7.1 (phpunit and its
dependents).
2022-05-29 00:24:11 -04:00
Bruce Weirdan
9784fe4999
Use lowest supported PHP version for shepherd run
...
Having Psalm installed under 8.1 leads to installing composer
dependencies that use PHP syntax incompatible with 7.4, however Psalm
analyzes itself using 7.4 parser.
2022-05-28 16:51:17 -04:00