composer(deps-dev): bump vimeo/psalm from 3.12.2 to 3.14.2

[dependabot]

Bumps vimeo/psalm from 3.12.2 to 3.14.2.

Release notes

Sourced from vimeo/psalm's releases.

Fix another regression

Bugfixes

• Fix exception when two mixins declare the same method (seen frequently on Laravel, thanks @xyng) – #4013
• Prevent mixed assignment in loop after positive check (#4011)
• Allow @psalm-type to reference imported type right above (#3999)
• Fixed some hash_* function signatures - thanks @baukevdw (#4014)
• Allow float defaults in namespaced class @method docblock annotations (#4017)
• Taint analysis - added sinks for pgsql functions - thanks @TysonAndre (#4021)
• Resolve type aliases in foreach docblock annotations - thanks @weirdan (#4029)
• Don’t hang when pcntl_fork is disabled - thanks @weirdan (#3951)
• Add config option to discover unused @psalm-suppress on every run – thanks @micheh (#3011)

Fix regression

Fixes a crash with this code:

/**
  * @param array<int, int> $arr
 */
 function foo(array $arr) : void {
    for ($i = 20; $arr[$i] === 5 && $i > 0; $i--) {}
}

Flag named argument discrepancies

Features

Named argument checks with ParamNameMismatch

For more information, see this article.

Preventing unsafe instantiation

Psalm now warns you when calling new $foo() where $foo() is a class that can be extended and where the constructor is not declared final, or new static where the constructor is not declared final (#3934).

For more information, see the issue page

Other features

• @mr-feek added support for supplying memory limit with a --memory-limit flag (#3947)

Bugfixes

• fix a few false-positives around positive-int types (#3914)
• expand scalar-class-constant types in a few more places (#3913, #3741)
• @NicolasCARPi improved the signature for hash_file() (#3920)
• honour arrays with class-string keys when appending literal classes (#3923)
• @SignpostMarv marked bscale as impure (ref #3918)
• preserve list-ness when assigning to a tuple inside a loop (#3928)

Commits

• 3538fe1 Add configuration attribute to find unused @psalm-suppress (#4041)
• 1f54c42 Don't hang when pcntl_fork is disabled (#4039)
• 4dcb718 Fix windows tests (#4040)
• 5bf7cc6 Resolve typedefs that are used in var docblocks of foreach (#4037)
• e62e964 Set up taint analysis for pgsql functions (#4021)
• 45d9ab1 Fix #4017 - allow float defaults in namespaced classes
• ebe3739 Fix #4019 - new static isn’t static if class is final
• 7ac6d2e Fix hash_*() signatures (#4014)
• 1468a28 Fix #3999 - allow @psalm-type to reference imported type right above
• 134955a Fix #4011 - prevent mixed assignment in loop
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #330 into main will not change coverage.
The diff coverage is n/a.

@@             Coverage Diff             @@
##                main      #330   +/-   ##
===========================================
  Coverage     100.00%   100.00%           
  Complexity       161       161           
===========================================
  Files             34        34           
  Lines            521       521           
===========================================
  Hits             521       521           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 85113bc...12ea6da. Read the comment docs.