Skip to content

Bump phpstan/phpstan from 1.12.27 to 2.2.5#8

Open
dependabot[bot] wants to merge 1 commit into
stablefrom
dependabot/composer/phpstan/phpstan-2.2.5
Open

Bump phpstan/phpstan from 1.12.27 to 2.2.5#8
dependabot[bot] wants to merge 1 commit into
stablefrom
dependabot/composer/phpstan/phpstan-2.2.5

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jul 10, 2026

Copy link
Copy Markdown

Bumps phpstan/phpstan from 1.12.27 to 2.2.5.

Release notes

Sourced from phpstan/phpstan's releases.

2.2.5

Improvements 🔧

Bugfixes 🐛

  • Allow null values in native preg_replace_callback callback array type for PREG_UNMATCHED_AS_NULL (#5987), #14904, thanks @​staabm!

Performance 🏎️

  • Restore process-wide statics from the main container after stub validation (#5984)
  • Drop the container reference in LazyClassReflectionExtensionRegistryProvider after building the registry (#5985)
  • Replace PhpClassReflectionExtension::evictPrivateSymbols() with a shared LRU over the member caches (#5986)
  • Make the member cache LRU limit configurable as cache.memberCacheKeysMax (#5986)
  • LRU-cap resolved local type aliases in UsefulTypeAliasResolver (#5989)
  • Make the cap configurable via cache.resolvedLocalTypeAliasesCountMax (#5989)
  • Raise CachedParser source-byte cap to 4 MB, add eviction floor, make it configurable (phpstan/phpstan-src@354e926)
  • Give CachedParser $cachedSourceBytesMax a default value (phpstan/phpstan-src@fa1003a)
  • Flatten deep BooleanOr chains in resolveType() to avoid O(n^2) scope narrowing (#5992), #14477, thanks @​SanderMuller!
  • Cache per-guard isSuperTypeOf() results in createConditionalExpressions() instead of recomputing them per target (#6001), #14920
  • Skip constant-array guards when creating conditional expressions for subtype-absorbed targets (#6002), #14921
  • Compute ConstantArrayType sealed-shape isSuperTypeOf() reasons lazily via IsSuperTypeOfResult closures (#6003), #14918
  • Memoize the ExprHandler lookup by Expr class in specifyTypesInCondition() and processExprNode() (#5999), #14919

Function signature fixes 🤖

Internals 🔍

2.2.4

PHPStan addresses the RAMpocalypse! It now consumes a lot less memory. See for yourself by running analyse -v.

... (truncated)

Commits
  • 909c1e5 PHPStan 2.2.5
  • ee4e43a Update baselines
  • 02959ca Updated PHPStan to commit 02959ca108a538db96a36e4637e9b132274aed85
  • a9cdf41 Updated PHPStan to commit a9cdf41f786dd08717235c7fcc95e118eb201bdd
  • 411daa4 Updated PHPStan to commit 411daa495b817743126b4c202ae0a08e7a7e5b39
  • da3598b Update errors identifiers
  • c473981 Updated PHPStan to commit c47398173c2e929b02b2d671ce16821e550c80c2
  • 5018943 Document cache.nodesByStringSourceBytesMax config parameter
  • 035f580 Updated PHPStan to commit 035f5807644eb44def1c819888f8f9990b921608
  • 354e926 Updated PHPStan to commit 354e9266fdb33141401f940d10ce8ffdbf0401d3
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [phpstan/phpstan](https://github.com/phpstan/phpstan) from 1.12.27 to 2.2.5.
- [Release notes](https://github.com/phpstan/phpstan/releases)
- [Changelog](https://github.com/phpstan/phpstan/blob/2.2.x/CHANGELOG.md)
- [Commits](phpstan/phpstan@1.12.27...2.2.5)

---
updated-dependencies:
- dependency-name: phpstan/phpstan
  dependency-version: 2.2.5
  dependency-type: direct:development
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels Jul 10, 2026
@dependabot dependabot Bot requested a review from ImperaZim as a code owner July 10, 2026 14:54
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file php Pull requests that update php code labels Jul 10, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file php Pull requests that update php code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants