1
0
mirror of https://github.com/danog/psalm.git synced 2024-11-30 04:39:00 +01:00
Commit Graph

98 Commits

Author SHA1 Message Date
dependabot[bot]
49492235fe
Bump actions/checkout from 3 to 4
Bumps [actions/checkout](https://github.com/actions/checkout) from 3 to 4.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v3...v4)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-09-11 07:29:32 +00:00
Thomas Bley
1e1ffe164f #10026 keep running phpcs and php lint with 7.4 2023-07-21 22:50:24 +02:00
Thomas Bley
e82114cfee #10026 keep running phpcs and php lint with 7.4 2023-07-21 22:46:46 +02:00
Thomas Bley
fc1d3e09ab #10026 added code style analysis with phpcs to github actions 2023-07-21 21:49:36 +02:00
Thomas Bley
4307bc49e3 #10026 run buuld-phar with php 8.0 in github actions (php 7.4 is out of official support) 2023-07-21 21:49:07 +02:00
Thomas Bley
51058eb45e #10026 cleanup 2023-07-20 02:02:28 +02:00
Thomas Bley
741d19682a #10026 cleanup signature for hash_pbkdf2() 2023-07-20 01:43:31 +02:00
Thomas Bley
ee185b9ad8 #10026 cleanup method signatures 2023-07-20 01:28:46 +02:00
Thomas Bley
cbee1e094e #10026 adapted DateTime tests for DateMalformedStringException in PHP 8.3 2023-07-19 23:52:25 +02:00
Thomas Bley
fffbf75cf8 cleanup 2023-07-19 21:06:35 +02:00
Thomas Bley
1c55437d78 cleanup 2023-07-19 20:51:13 +02:00
Thomas Bley
ba4e40a9f6 cleanup 2023-07-19 20:47:58 +02:00
Thomas Bley
d0605ee765 cleanup 2023-07-19 20:46:50 +02:00
Thomas Bley
e8586a7a35 #10026 test matrix for different php versions and operating systems 2023-07-19 20:42:39 +02:00
Thomas Bley
9eb3c7eb7d #10026 test matrix for different php versions and operating systems 2023-07-19 20:41:59 +02:00
Thomas Bley
d39013324d #10026 added GitHub CI for unit tests with PHP 8.2 and 8.3 2023-07-19 20:30:57 +02:00
dependabot[bot]
7a3bb6c7fa
Bump mheap/github-action-required-labels from 4 to 5
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 4 to 5.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v4...v5)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-06-12 07:59:08 +00:00
dependabot[bot]
adad16e980
Bump mheap/github-action-required-labels from 3 to 4
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 3 to 4.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v3...v4)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-04-03 07:59:36 +00:00
Bruce Weirdan
44ffd5fb46
Merge pull request #9492 from weirdan/refuse-invalid-php-versions 2023-03-12 02:58:53 -04:00
Bruce Weirdan
c917826ff8
Pass COMPOSER_ROOT_VERSION to composer update
when we don't have full git history
2023-03-12 02:15:47 -04:00
Bruce Weirdan
08add38449
Optimize composer caching
Previously our composer package cache would not be updated because we
had no `composer.lock` (which hash is used as part of the cache key).

Generating `composer.lock` (but not installing packages) before we check
the cache fixes this.
2023-03-12 02:08:04 -04:00
Bruce Weirdan
ec4f8ebaa3
Refuse to use PHP versions we did not request
There were a number of test failures caused by setup-php failing to
install the required PHP version. While we certainly should fix our
failing tests, we also need to be sure which PHP version we're using.

This PR does exactly that.
2023-03-12 01:45:23 -04:00
484043a5a1 Enable JIT 2023-02-20 13:55:06 +01:00
a01c634878 Run tests with opcache 2023-02-20 13:50:12 +01:00
Alies Lapatsin
86fe34bb52 Run assertions on CI 2023-02-16 10:45:42 +01:00
Bruce Weirdan
ffb393ca97
Switch shell instead of tweaking quotes 2023-02-09 14:42:22 -04:00
Bruce Weirdan
89024ffbc2
Quote paths 2023-02-09 03:54:25 -04:00
Bruce Weirdan
c7ef4580c3
Update workflows to use non-deprecated method offf setting step output
See https://github.blog/changelog/2022-10-11-github-actions-deprecating-save-state-and-set-output-commands/
2023-02-09 03:35:58 -04:00
dependabot[bot]
478422e010
Bump mheap/github-action-required-labels from 2 to 3
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 2 to 3.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v2...v3)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-01-02 07:04:00 +00:00
Bruce Weirdan
7dd25b46d8
Fix missing version in PHARs build on GA
We were overriding the root version with COMPOSER_ROOT_VERSION, so all
PHARs had `dev-master` as the version for `vimeo/psalm` baked in.

Fixed vimeo/psalm#7606
2022-12-23 17:26:39 -04:00
Corey Taylor
d6eca8c056 Verify nullable callmap parameters 2022-12-23 06:04:35 -06:00
dependabot[bot]
a30622bfb5
Bump fkirc/skip-duplicate-actions from 4.0.0 to 5.3.0
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 4.0.0 to 5.3.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v4.0.0...v5.3.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-12-05 07:05:39 +00:00
orklah
74d37452ee Test CI on 8.2 2022-11-25 03:43:24 -04:00
7b6e09afc9 Merge branch 'merge_4.x' into immutable_readonly_3 2022-10-17 12:58:41 +02:00
748a74bb2c Merge remote-tracking branch 'origin/4.x' into HEAD 2022-10-16 13:41:27 +02:00
3abd0b961f Immutable Unions 2022-10-03 10:45:36 +02:00
Alex
a6710791e4
Update build-phar.yml
Signed-off-by: sashashura <93376818+sashashura@users.noreply.github.com>
2022-09-02 19:16:42 +01:00
AndrolGenhald
285740a753 Merge branch '4.x' 2022-07-07 15:01:38 -05:00
orklah
b1568920ee
Merge pull request #8210 from vimeo/dependabot/github_actions/actions/checkout-3
build(deps): bump actions/checkout from 2 to 3
2022-06-30 19:30:34 +02:00
orklah
fdb664fe1b
Merge pull request #8209 from vimeo/dependabot/github_actions/actions/cache-3
build(deps): bump actions/cache from 2 to 3
2022-06-30 19:18:33 +02:00
orklah
cf8f0a0734
Merge pull request #8208 from vimeo/dependabot/github_actions/fkirc/skip-duplicate-actions-4.0.0
build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0
2022-06-30 19:18:13 +02:00
dependabot[bot]
005d3e2f50
build(deps): bump actions/checkout from 2 to 3
Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](https://github.com/actions/checkout/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:08 +00:00
dependabot[bot]
236c24faea
build(deps): bump actions/cache from 2 to 3
Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](https://github.com/actions/cache/compare/v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:06 +00:00
dependabot[bot]
206a903e46
build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0
Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 3.4.0 to 4.0.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](https://github.com/fkirc/skip-duplicate-actions/compare/v3.4.0...v4.0.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:05:02 +00:00
dependabot[bot]
f4e518c350
build(deps): bump mheap/github-action-required-labels from 1 to 2
Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 1 to 2.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](https://github.com/mheap/github-action-required-labels/compare/v1...v2)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
2022-06-30 17:04:59 +00:00
naveen
bd50c4e7b0 chore: Set permissions for GitHub actions
Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>
2022-06-28 00:29:16 +00:00
Sam Mousa
037c9ed118
ci: run tests on php 8.1 2022-06-14 15:29:46 +02:00
Bruce Weirdan
8455d71a9b Run Shepherd with 8.0
Because installing packages with 8.1 and checking them as if we're
running 7.1 just doesn't work.
2022-05-29 23:34:06 +03:00
Bruce Weirdan
c3ea97949d
Fix syntax check failures
They were caused by installing packages with `--ignore-platform-reqs`
which brought PHP 8.1 autoloaded packages and caused fatal errors when
running php-parallel-lint. Instead of ignoring platform requirements we
now remove packages that are incompatible with PHP 7.1 (phpunit and its
dependents).
2022-05-29 00:24:11 -04:00
Bruce Weirdan
9784fe4999
Use lowest supported PHP version for shepherd run
Having Psalm installed under 8.1 leads to installing composer
dependencies that use PHP syntax incompatible with 7.4, however Psalm
analyzes itself using 7.4 parser.
2022-05-28 16:51:17 -04:00