Bump phpstan/phpstan from 0.11.5 to 0.12.18

[dependabot-preview]

Bumps phpstan/phpstan from 0.11.5 to 0.12.18.

Release notes

Sourced from phpstan/phpstan's releases.

0.12.18

Improvements 🔧

Dedicated CLI option --generate-baseline with improved DX (phpstan/phpstan-src@f4a9d5f), #3082, #2703, #2776, #2695, #2534

Use it from now on instead of --error-format baselineNeon. Here are the advantages:

1. The current baseline file does not have to be commented-out nor emptied when generating the new baseline. It's excluded automatically.
2. Output no longer has to be redirected to a file, PHPStan saves the baseline to a specified path (defaults to phpstan-baseline.neon).
3. Baseline contains correct relative paths if saved to a subdirectory.

Bugfixes 🐛

• Fix reporting unmatched ignored error from path that wasn't analysed (phpstan/phpstan-src@c9df2f4), #3099

Function signature fixes 🤖

• Fix bcdiv return (#167), thanks @BackEndTea!
• Fix other bc* function types (#168), thanks @BackEndTea!

0.12.17

• Fixed issue with arrow function type inference and TooWideArrowFunctionReturnTypehintRule (phpstan/phpstan-src@5581928)
• Fixed issue with ArrayAccess stub (phpstan/phpstan-src@ab85120)

0.12.16

Improvements 🔧

• Arrow function return type inference (phpstan/phpstan-src@19482b7), #3091
• Result cache - use lazy callback for errors array in case older PHPStan gets handed newer result cache (phpstan/phpstan-src@5a032f6)

Bugfixes 🐛

• Fix is_numeric issues (phpstan/phpstan-src@337fbee), #3094, #3092, #3090
• Fix property_exists issues (phpstan/phpstan-src@a44bad9), #2221
• Fixed iterable<T> vs. empty constant array (phpstan/phpstan-src@3b64b12), #3010, #3072

0.12.15

Improvements 🔧

• Result cache improvements:
  • Use file hashes instead of modified times (phpstan/phpstan-src@be3e4fc). It's now possible to use result cache in all CI environments!
  • Result cache contains all errors, filtering through ignoreErrors each time (phpstan/phpstan-src@9e10b4c), #3058. This means that the "report unmatched ignore errors" behavior is now deterministic, it doesn't matter if the cache is used or not.
  • Do not save the cache with non-ignorable errors (phpstan/phpstan-src@762277e), #3056
• Unmatched ignored error for a specific file reported in that file (phpstan/phpstan-src@3b0c6a2)

... (truncated)

Commits

• 1ce27fe PHPStan 0.12.18
• 99c7826 Updated PHPStan to commit f4a9d5f2f71e4615f03d2f6ca8f8fe184a936846
• 37c5645 Updated PHPStan to commit be8ff32575b23ace22651c577e852b07e4f9ea24
• 20e6e77 Updated PHPStan to commit 195bb009825f0bf9d2cdbc6c75eed532c43c5ff9
• 82b300d Updated PHPStan to commit 14f702d6b45a744c47dd8d1590b026fa1032d529
• 2a2a9f6 Updated PHPStan to commit c9df2f43a3e2934b8b903c6e6c7f3b968175e4ce
• fcf252d Updated PHPStan to commit 7cba98364c88e310ec5b8e425f00ed0583622fb8
• bc6130e Fix grammar mistake in README
• f2f4cd6 Add an example of a simple phpstan.neon file
• 9aba869 Apparently this has to be here
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

Superseded by #902.