Bump phpmd/phpmd from 2.9.1 to 2.10.0

[dependabot-preview]

Bumps phpmd/phpmd from 2.9.1 to 2.10.0.

Release notes

Sourced from phpmd/phpmd's releases.

PHPMD 2.10.0

Added

• Added #879: Documentation for Junit export with third party
• Added #836: Provide option to allow reference to a class in the root namespace without an import
• Added #856: Adds checkstyle compatible renderer, suitable for cs2pr or reviewdog
• Added #858 in #865: Add SARIF renderer.
• Added #873 and #876: Added option to baseline existing violations
• Added #861: Docs for GitHub renderer
• Added #868 In #869: Option to ignore globally-namespaced classes from MissingImport
• Added #834 : Add "tool" property to main "pmd" tag in XML report

Changed

• Changed #786: Add convenience method AbstractNode::findChildrenOfTypeVariable()
• Changed documentation: #874 #849 #724
• Changed #514 in #872: Change exit code on processing errors
• Changed: Internal code improvement #839 #875 #838 #862 #788 #830
• Changed #848 #864: Use GitHub actions

Fixed

• Fixed #673 in #782: Ignore dynamic class name from missing imports
• Fixed #577 in #844: Recognize compact variables with double quotes
• Fixed #818 in #822: Fix passing-by-reference detection
• Fixed #826 in #827: Consider foreach exception only for direct children
• Fixed #851 in #852: Fix multiple underscores in method name when allow-underscore-test is allowed
• Fixed #846 in #847: Catch DevelopmentCodeFragment with fully qualified functions
• Fixed #829 in #835: Fatal error while analyzing anonymous class
• Fixed #816 in #818: Fixed undefined index referring

Deprecated

• Deprecated: getIgnorePattern and setIgnorePattern on PHPMD\PHPMD see #772

Consult the changelog for the full history of noteworthy changes or browse through the list of commits since the last release.

Contributors to this release

We would like to thank all the contributors that helped make this release possible:

• @​a-menshchikov
• @​babanesma
• @​ComiR
• @​danepowell
• @​ffflabs
• @​frankdekker
• @​kamioftea
• @​kdebisschop
• @​kylekatarnls
• @​lukasbestle
• @​martzd
• @​ravage84
• @​SanderSander

... (truncated)

Changelog

Sourced from phpmd/phpmd's changelog.

phpmd-2.10.0 (2021/04/26)

• Added #879: Documentation for Junit export with third party
• Added #836: Provide option to allow reference to a class in the root namespace without an import
• Added #856: Adds checkstyle compatible renderer, suitable for cs2pr or reviewdog
• Added #858 in #865: Add SARIF renderer.
• Added #873 and #876: Added option to baseline existing violations
• Added #861: Docs for GitHub renderer
• Added #868 In #869: Option to ignore globally-namespaced classes from MissingImport
• Added #834 : Add "tool" property to main "pmd" tag in XML report
• Fixed #673 in #782: Ignore dynamic class name from missing imports
• Fixed #577 in #844: Recognize compact variables with double quotes
• Fixed #818 in #822: Fix passing-by-reference detection
• Fixed #826 in #827: Consider foreach exception only for direct children
• Fixed #851 in #852: Fix multiple underscores in method name when allow-underscore-test is allowed
• Fixed #846 in #847: Catch DevelopmentCodeFragment with fully qualified functions
• Fixed #829 in #835: Fatal error while analyzing anonymous class
• Fixed #816 in #818: Fixed undefined index referring
• Changed #786: Add convenience method AbstractNode::findChildrenOfTypeVariable()
• Changed documentation: #874 #849 #724
• Changed #514 in #872: Change exit code on processing errors
• Changed: Internal code improvement #839 #875 #838 #862 #788 #830
• Changed #848 #864: Use GitHub actions
• Deprecated: getIgnorePattern and setIgnorePattern on PHPMD\PHPMD see #772

Commits

• 58ef9e7 Merge pull request #880 from phpmd/release/2.10.0
• e9f4388 Suppress EmptyCatchBlock for intended TODO
• 5962a32 Add 2.10.0 changelog
• d4fb18e Bump project.version
• 9f55026 Merge pull request #878 from kylekatarnls/feature/php-8
• 2ae08fc Merge pull request #828 from kylekatarnls/feature/issue-672-fallback-function...
• 9e531d6 Merge pull request #879 from phpmd/document-junit
• c6eec43 Merge pull request #836 from kdebisschop/reference-to-root-namespace-is-not-a...
• 45b14e6 Fix tests after rebase from master
• dea3ab2 Fix @​covers that was broken by change in function name
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!

0 Bugs
0 Vulnerabilities
0 Security Hotspots
0 Code Smells

No Coverage information
No Duplication information

[dependabot-preview]

Superseded by #439.