They were caused by installing packages with `--ignore-platform-reqs`
which brought PHP 8.1 autoloaded packages and caused fatal errors when
running php-parallel-lint. Instead of ignoring platform requirements we
now remove packages that are incompatible with PHP 7.1 (phpunit and its
dependents).

Because installing packages with 8.1 and checking them as if we're
running 7.1 just doesn't work.

Run Shepherd with 8.0

Precise stat return type

…om 7.4 to 8.0

…storical callmap

…ect-fputcsv-invalidnamedargument

Bugfix/splfileobject fputcsv invalidnamedargument

This keeps coming up in obscure places, hopefully this fixes it once and for all. I would reeeaaally love to have an immutable type system at some point...

…ation

Fix `TypeCombiner::combine` to not modify TIntRange arguments.

…n cases

instead of from full text

50% faster than cutting from full text, improves performance up to 3% depending on file length and number of errors in file

…text-from-snippet

Performance: cut the selected_text from snippet

…tion

store origin location by ID to speed up psalm by up to 75%

I wasn't sure from reading the docs whether or not Psalm consider zero to be positive.

Clarify in docs that zero is not considered a positive-int

Fixes vimeo#8063

Alters the fix for vimeo#2165 (1a48be8)

/cc: @iluuu1994, @muglug

…array-offsets

Coerce null to empty string in array keys

…ixes vimeo#8068).

Fix generic object comparison to use template constraint as default.

Fix possibly empty array shape appearing non-empty (fixes vimeo#8048).

fix vimeo#8099: ob_implicit_flush argument type changed to bool

…able in PHP 7 and 8

…r-partially-invalid

fix false positives for partially invalid phpdoc

tests: add test that validates the callmap in the current runtime

number_format: allow third and forth parameters to be nullable

Add ReflectionClass & ReflectionObject::isEnum()

Add missing ldap_unbind mapping for php 8.1

…map-ignore

Callmap validation ignore list cleanup

Fix signatures of ldap_* functions

Fix datefmt_* function signatures

Fix filter_var and filter_var_array signatures

Fix array_* function signatures

Add ReflectionProperty properties

…er-add-😡

Improve @psalm-internal and prevent usage of IssueBuffer::add().

…ings

Encapsed literal strings

Fix crash when redefining method with fewer params (fixes vimeo#8141).

…er.php

This fixed the following PHP 8.2 deprecation:

> Uncaught RuntimeException: PHP Error: Using ${var} in strings is deprecated, use {$var} instead in …/vimeo/psalm/src/Psalm/Internal/Provider/StatementsProvider.php:140

see: https://wiki.php.net/rfc/deprecate_dollar_brace_string_interpolation

 Restrict the GitHub token permissions only to the required ones; this way, even if the attackers will succeed in compromising your workflow, they won’t be able to do much.

- Included permissions for the action. https://github.com/ossf/scorecard/blob/main/docs/checks.md#token-permissions

https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#permissions

https://docs.github.com/en/actions/using-jobs/assigning-permissions-to-jobs

[Keeping your GitHub Actions and workflows secure Part 1: Preventing pwn requests](https://securitylab.github.com/research/github-actions-preventing-pwn-requests/)

Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

* check isset for all elements first, as array_diff is much more expensive
* Improves performance by 1%

* sort is much more expensive than count, so we only sort if we have something to sort
* could implement for ksort too, but advantage there is minimal since we almost always have more than 1 possibility
* use same hash algorithm as in other places (= faster)
* reduces runtime by 2-3%

improves performance by ~1-1.5%

* do not concatenate with timestamp as this is slow, since $file_contents may be big
* use file contents not file path for cache hash only to ensure it works if file_path not set but file_content is
* improves performance by ~5%

* reduces I/O by 30%
* minimal performance improvement (<0.5%)

Various minor improvements to speed up by ~10%

Fixes vimeo#8167

Fix return type of ReflectionNamedType::getName()

chore: Set permissions for GitHub actions

This should help with keeping the GitHub actions updated on new releases. This will also help with keeping it secure.

Dependabot helps in keeping the supply chain secure https://docs.github.com/en/code-security/dependabot

GitHub actions up to date https://docs.github.com/en/code-security/dependabot/working-with-dependabot/keeping-your-actions-up-to-date-with-dependabot

https://github.com/ossf/scorecard/blob/main/docs/checks.md#dependency-update-tool
Signed-off-by: naveen <172697+naveensrinivasan@users.noreply.github.com>

chore: Included githubactions in the dependabot config

Bumps [mheap/github-action-required-labels](https://github.com/mheap/github-action-required-labels) from 1 to 2.
- [Release notes](https://github.com/mheap/github-action-required-labels/releases)
- [Commits](mheap/github-action-required-labels@v1...v2)

---
updated-dependencies:
- dependency-name: mheap/github-action-required-labels
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Bumps [fkirc/skip-duplicate-actions](https://github.com/fkirc/skip-duplicate-actions) from 3.4.0 to 4.0.0.
- [Release notes](https://github.com/fkirc/skip-duplicate-actions/releases)
- [Commits](fkirc/skip-duplicate-actions@v3.4.0...v4.0.0)

---
updated-dependencies:
- dependency-name: fkirc/skip-duplicate-actions
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Bumps [actions/cache](https://github.com/actions/cache) from 2 to 3.
- [Release notes](https://github.com/actions/cache/releases)
- [Changelog](https://github.com/actions/cache/blob/main/RELEASES.md)
- [Commits](actions/cache@v2...v3)

---
updated-dependencies:
- dependency-name: actions/cache
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

Bumps [actions/checkout](https://github.com/actions/checkout) from 2 to 3.
- [Release notes](https://github.com/actions/checkout/releases)
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md)
- [Commits](actions/checkout@v2...v3)

---
updated-dependencies:
- dependency-name: actions/checkout
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>

…eap/github-action-required-labels-2

build(deps): bump mheap/github-action-required-labels from 1 to 2

…irc/skip-duplicate-actions-4.0.0

build(deps): bump fkirc/skip-duplicate-actions from 3.4.0 to 4.0.0

…tions/cache-3

build(deps): bump actions/cache from 2 to 3

…tions/checkout-3

build(deps): bump actions/checkout from 2 to 3

… currently fail

Fixes vimeo#8218

Allow testing expected CallMap return types

Fix several CallMap function signatures

Fix codestyle errors in InternalCallMapHandlerTest

fix: ltrim may return class-string vimeo#8218