Chore(deps): Bump the dependencies group across 1 directory with 6 updates

[dependabot]

Bumps the dependencies group with 6 updates in the / directory:

Package	From	To
doctrine/orm	2.20.6	3.5.2
matomo/device-detector	6.4.6	6.4.7
nelmio/api-doc-bundle	4.38.2	5.5.0
phpdocumentor/reflection-docblock	5.6.2	5.6.3
zircote/swagger-php	4.11.1	5.3.1
phpunit/phpunit	12.3.4	12.3.6

Updates doctrine/orm from 2.20.6 to 3.5.2

Release notes

Sourced from doctrine/orm's releases.

3.5.2

Release Notes for 3.5.2

3.5.x bugfix release (patch)

3.5.2

• Total issues resolved: 0
• Total pull requests resolved: 2
• Total contributors: 2

Test Suite

• 12114: Don't partially mock the AbstractPlatform class thanks to @​derrabus

Bugfixes

• 12108: Address deprecations thanks to @​greg0ire

This release also contains the changes from https://github.com/doctrine/orm/releases/tag/2.20.6

3.5.1

Release Notes for 3.5.1

3.5.x bugfix release (patch)

3.5.1

• Total issues resolved: 0
• Total pull requests resolved: 9
• Total contributors: 4

Deprecation

• 12083: Deprecate ClassMetadata::$reflFields thanks to @​greg0ire

Bugfixes

• 12098: Address deprecations from doctrine/dbal thanks to @​greg0ire
• 12088: Quote parts of the table name thanks to @​greg0ire
• 12063: Proxy class with BackedEnum as primary key does not convert the enum thanks to @​wmouwen
• 12062: Fix unhandled ParameterType case for binary PKs thanks to @​janedbal

Static Analysis

• 12072: Update baseline because of doctrine/dbal 4.3.0 thanks to @​greg0ire

Test Suite

... (truncated)

Upgrade guide

Sourced from doctrine/orm's upgrade guide.

Upgrade to 3.5

Deprecate not using native lazy objects on PHP 8.4+

Having native lazy objects disabled on PHP 8.4+ is deprecated and will not be possible in 4.0.

You can enable them through configuration:

$config->enableNativeLazyObjects(true);

As a consequence, methods, parameters and commands related to userland lazy objects have been deprecated on PHP 8.4+:

• Doctrine\ORM\Tools\Console\Command\GenerateProxiesCommand
• Doctrine\ORM\Configuration::getAutoGenerateProxyClasses()
• Doctrine\ORM\Configuration::getProxyDir()
• Doctrine\ORM\Configuration::getProxyNamespace()
• Doctrine\ORM\Configuration::setAutoGenerateProxyClasses()
• Doctrine\ORM\Configuration::setProxyDir()
• Doctrine\ORM\Configuration::setProxyNamespace()
• Passing more than one argument to Doctrine\ORM\Proxy\ProxyFactory::__construct()

Additionally, some methods of ORMSetup have been deprecated in favor of a new counterpart.

• Doctrine\ORM\ORMSetup::createAttributeMetadataConfiguration() is deprecated in favor of Doctrine\ORM\ORMSetup::createAttributeMetadataConfig()
• Doctrine\ORM\ORMSetup::createXMLMetadataConfiguration() is deprecated in favor of Doctrine\ORM\ORMSetup::createXMLMetadataConfig()
• Doctrine\ORM\ORMSetup::createConfiguration() is deprecated in favor of Doctrine\ORM\ORMSetup::createConfig()

Deprecate methods for configuring no longer configurable features

Since 3.0, lazy ghosts are enabled unconditionally, and so is rejecting ID collisions in the identity map.

As a consequence, the following methods are deprecated and will be removed in 4.0:

• Doctrine\ORM\Configuration::setLazyGhostObjectEnabled()
• Doctrine\ORM\Configuration::isLazyGhostObjectEnabled()
• Doctrine\ORM\Configuration::setRejectIdCollisionInIdentityMap()
• Doctrine\ORM\Configuration::isRejectIdCollisionInIdentityMapEnabled()

Upgrade to 3.4.1

BC BREAK: You can no longer use the .* notation to get all fields of an entity in a DTO

... (truncated)

Commits

• 5a541b8 Merge pull request #12121 from greg0ire/3.5.x
• 9fb9cc4 Merge remote-tracking branch 'origin/2.20.x' into 3.5.x
• 781ed30 Merge pull request #12108 from greg0ire/address-deprecations
• 257c509 Use not nullable columns when part of the primary key
• 66e0e92 Don't partially mock the AbstractPlatform class (#12114)
• 64444dc Merge pull request #12088 from greg0ire/quote-parts
• eb2cd53 Move LazyGhost deprecation to ProxyFactory (#12101)
• de7140e Address deprecations from doctrine/dbal (#12098)
• 85d66de Improve comment
• 1b98be3 Convert test into 2 unit tests
• Additional commits viewable in compare view

Updates matomo/device-detector from 6.4.6 to 6.4.7

Release notes

Sourced from matomo/device-detector's releases.

6.4.7

What's Changed

• Detect devices for exist brands by @​sanchezzzhak in matomo-org/device-detector#8060
• Improves detection for ChromeOS by @​liviuconcioiu in matomo-org/device-detector#8061
• Detect new brands: G-Vill, Vitumi and Detect devices for exist brands by @​sanchezzzhak in matomo-org/device-detector#8062
• Regex YMLs: use stringified "Yes" cause it might be parsed as Boolean with other Parsers by @​spiderpug in matomo-org/device-detector#8064
• Detect new brands: Fanvace, GlobalSec, VASOUN and Detect devices for exist brands by @​sanchezzzhak in matomo-org/device-detector#8066
• Improves detection for LineageOS by @​liviuconcioiu in matomo-org/device-detector#8067
• Adds detection for KolibriOS and LibHTTP by @​liviuconcioiu in matomo-org/device-detector#8068
• Adds detection for Microsoft Power Automate by @​liviuconcioiu in matomo-org/device-detector#8072
• Adds detection for QuarkPC and Quetta browsers by @​liviuconcioiu in matomo-org/device-detector#8074
• Detect new brands: ACD, RunGee, YIKEMI and Detect devices for exist brands by @​sanchezzzhak in matomo-org/device-detector#8077
• Adds detection for WeCom by @​liviuconcioiu in matomo-org/device-detector#8070
• Add detection for Seekr iOS and Android user-agents by @​admutant in matomo-org/device-detector#8080
• Detect new brand: CALME and Detect devices for exist brands by @​sanchezzzhak in matomo-org/device-detector#8081
• Detect new brands: Eplutus, waipu.tv, ZALA and Detect devices for exist brands by @​sanchezzzhak in matomo-org/device-detector#8083

New Contributors

• @​admutant made their first contribution in matomo-org/device-detector#8080

Full Changelog: matomo-org/device-detector@6.4.6...6.4.7

Commits

• e53eed3 Prepare next release (#8088)
• 37feb32 update README.md (#8084)
• 6ba210f Detect new brands: Eplutus, waipu.tv, ZALA and Detect devices for exist brand...
• 678512d Detect new brand: CALME and Detect devices for exist brands (#8081)
• 020fa35 Add detection for Seekr iOS and Android user-agents (#8080)
• a576821 Adds detection for WeCom (#8070)
• 7736836 update README.md (#8079)
• 5766159 Detect new brands: ACD, RunGee, YIKEMI and Detect devices for exist brands (#...
• 34fe6f1 update README.md (#8076)
• 3b8b3cf Adds detection for QuarkPC and Quetta browsers (#8074)
• Additional commits viewable in compare view

Updates nelmio/api-doc-bundle from 4.38.2 to 5.5.0

Release notes

Sourced from nelmio/api-doc-bundle's releases.

v5.5.0

What's Changed

• chore(deps): bump swagger-ui-dist from 5.25.3 to 5.27.1 in /utils by @​dependabot[bot] in nelmio/NelmioApiDocBundle#2525
• feat(ModelRegistry): schemas deduplication now compare generated schemas to reduce automatically named schemas by @​xavierleune in nelmio/NelmioApiDocBundle#2461
• chore(deps): bump @​stoplight/elements from 9.0.1 to 9.0.6 in /utils by @​dependabot[bot] in nelmio/NelmioApiDocBundle#2523
• feat: Support for generic types by @​bnowak in nelmio/NelmioApiDocBundle#2503

Full Changelog: nelmio/NelmioApiDocBundle@v5.4.0...v5.5.0

v5.4.0

What's Changed

• feat(#2486): properly describe multiple file upload by @​DjordyKoert in nelmio/NelmioApiDocBundle#2511

Full Changelog: nelmio/NelmioApiDocBundle@v5.3.1...v5.4.0

v5.3.1

What's Changed

• chore(deps): bump stefanzweifel/git-auto-commit-action from 5 to 6 by @​dependabot in nelmio/NelmioApiDocBundle#2500
• fix: typo in documentation by @​norival in nelmio/NelmioApiDocBundle#2504
• fix(#2509): fatal reflection error when controller class doesn't exist by @​DjordyKoert in nelmio/NelmioApiDocBundle#2510
• chore(deps): bump swagger-ui-dist from 5.21.0 to 5.25.2 in /utils by @​dependabot in nelmio/NelmioApiDocBundle#2506

New Contributors

• @​norival made their first contribution in nelmio/NelmioApiDocBundle#2504

Full Changelog: nelmio/NelmioApiDocBundle@v5.3.0...v5.3.1

v5.3.0

What's Changed

• docs: add community projects by @​DjordyKoert in nelmio/NelmioApiDocBundle#2493
• docs(#2223): update 4.x converter tool by @​DjordyKoert in nelmio/NelmioApiDocBundle#2494
• feat: add support for Symfony's TranslatableInterface by @​jsor in nelmio/NelmioApiDocBundle#2472

New Contributors

• @​jsor made their first contribution in nelmio/NelmioApiDocBundle#2472

Full Changelog: nelmio/NelmioApiDocBundle@v5.2.1...v5.3.0

v5.2.1

What's Changed

• chore: Update README.md by @​DjordyKoert in nelmio/NelmioApiDocBundle#2490
• fix(#2480): Tag ignored on subclasses when routes are inherited from abstract controller by @​DjordyKoert in nelmio/NelmioApiDocBundle#2492

Full Changelog: nelmio/NelmioApiDocBundle@v5.2.0...v5.2.1

v5.2.0

What's Changed

... (truncated)

Changelog

Sourced from nelmio/api-doc-bundle's changelog.

5.5.0

• Schemas deduplication now compare generated schemas to reduce automatically named schemas (Entity / Entity2 / Entity3 / ...).
• Added support for generic types describing

5.3.0

Added support for Symfony's TranslatableInterface

5.2.1

Fixed a bug where using abstract controllers would ignore various attributes like #[OA\Tag] & #[Security] on child classes

5.2.0

Made it possible to automatically generate security definitions based on the #[IsGranted] attribute.

nelmio_api_doc:
    # ...
areas:
    default:
        security:
            MyBearerScheme:
                type: 'http'
                scheme: 'bearer'

5.1.0

Made it possible to configure how operation ids are generated.

nelmio_api_doc:
    operation_id_generation: always_prepend

Possible values: always_prepend, conditionally_prepend, no_prepend or enum instance of Nelmio\ApiDocBundle\Describer\OperationIdGeneration

Commits

• ce64341 feat: Support for generic types (#2503)
• 752cde9 chore(deps): bump @​stoplight/elements from 9.0.1 to 9.0.6 in /utils (#2523)
• 729f9d4 feat(ModelRegistry): schemas deduplication now compare generated schemas to r...
• 804f7ab chore(deps): bump swagger-ui-dist from 5.25.3 to 5.27.1 in /utils (#2525)
• 49098f9 feat(#2486): properly describe multiple file upload (#2511)
• 735c39e chore(deps): bump swagger-ui-dist from 5.21.0 to 5.25.2 in /utils (#2506)
• 75693b3 fix(#2509): fatal reflection error when controller class doesn't exist (#2510)
• 0bd729b fix: typo in documentation (#2504)
• bac8199 chore(deps): bump stefanzweifel/git-auto-commit-action from 5 to 6 (#2500)
• 6042983 feat: add support for Symfony's TranslatableInterface (#2472)
• Additional commits viewable in compare view

Updates phpdocumentor/reflection-docblock from 5.6.2 to 5.6.3

Release notes

Sourced from phpdocumentor/reflection-docblock's releases.

5.6.3

What's Changed

• Fix workflow badge, tweak stable and unstable badges by @​DannyvdSluijs in phpDocumentor/ReflectionDocBlock#410
• Do not call Reflection*::setAccessible() in PHP >= 8.1 by @​W0rma in phpDocumentor/ReflectionDocBlock#414

New Contributors

• @​DannyvdSluijs made their first contribution in phpDocumentor/ReflectionDocBlock#410
• @​W0rma made their first contribution in phpDocumentor/ReflectionDocBlock#414

Full Changelog: phpDocumentor/ReflectionDocBlock@5.6.2...5.6.3

Commits

• 94f8051 Merge pull request #414 from W0rma/reflection-set-accessible
• a508a8b setAccessible() does not have any effect as of PHP 8.1
• 65a4d3e Merge pull request #410 from DannyvdSluijs/patch-1
• 9cd3a32 Fix workflow badge, tweak stable and unstable badges
• See full diff in compare view

Updates zircote/swagger-php from 4.11.1 to 5.3.1

Release notes

Sourced from zircote/swagger-php's releases.

5.3.1

What's Changed

• Ensure Context can be serialized by @​DerManoMann in zircote/swagger-php#1789

Full Changelog: zircote/swagger-php@5.3.0...5.3.1

5.3.0

What's Changed

• Convert annotated type array into single type + nullable for 3.0 by @​DerManoMann in zircote/swagger-php#1786
• Favour promoted property annotation nullable over native by @​DerManoMann in zircote/swagger-php#1785

Full Changelog: zircote/swagger-php@5.2.0...5.3.0

5.2.0

What's Changed

• Support use x-* in ref by @​krissss in zircote/swagger-php#1776
• Add more rector rule sets by @​DerManoMann in zircote/swagger-php#1778
• Add reflection details to context by @​DerManoMann in zircote/swagger-php#1782
• Favour annotation nullable over native by @​DerManoMann in zircote/swagger-php#1784

Full Changelog: zircote/swagger-php@5.1.4...5.2.0

5.1.4

What's Changed

• Fix parameter type by @​krissss in zircote/swagger-php#1775

New Contributors

• @​krissss made their first contribution in zircote/swagger-php#1775

Full Changelog: zircote/swagger-php@5.1.3...5.1.4

5.1.3

What's Changed

• Fix 'AOK' > 'OK' typo by @​RomainMazB in zircote/swagger-php#1771
• Add deprecations for v6 by @​DerManoMann in zircote/swagger-php#1772

New Contributors

• @​RomainMazB made their first contribution in zircote/swagger-php#1771

Full Changelog: zircote/swagger-php@5.1.2...5.1.3

5.1.2

What's Changed

• Normalize generated snippet test namespace by @​DerManoMann in zircote/swagger-php#1768
• Disable OperationId processor instead patching namespace by @​DerManoMann in zircote/swagger-php#1769
• adding attribute examples by @​natsuki-engr in zircote/swagger-php#1699

... (truncated)

Commits

• e174ef7 Ensure Context can be serialized (#1789)
• f6f5612 Favour promoted property annotation nullable over native (#1785)
• 25a33ea Convert annotated type array into single type + nullable for 3.0 (#1786)
• b82e160 Favour annotation nullable over native (#1784)
• 1782c27 Add reflection details to context (#1782)
• 642f454 CS: Add more rector rule sets (#1778)
• efd7611 Support use x-* in ref (#1776)
• 471f2e7 Fix method parameter type mapping (#1775)
• b8ba6bd Add deprecations for v6 (#1772)
• f115a38 Fix 'AOK' > 'OK' typo (#1771)
• Additional commits viewable in compare view

Updates phpunit/phpunit from 12.3.4 to 12.3.6

Release notes

Sourced from phpunit/phpunit's releases.

PHPUnit 12.3.5

Changed

• #6319: Detect premature end of PHPUnit's main PHP process
• #6321: Allow error_reporting=E_ALL for --check-php-configuration

Fixed

• #5863: TestDox printer does not show previous exception
• #6102: expectUserDeprecationMessage*() fails when test is run in separate process

---

Learn how to install or update PHPUnit 12.3 in the documentation.

Keep up to date with PHPUnit:

• You can follow @​phpunit@phpc.social to stay up to date with PHPUnit's development.
• You can subscribe to the PHPUnit Updates newsletter to receive updates about and tips for PHPUnit.

Changelog

Sourced from phpunit/phpunit's changelog.

[12.3.6] - 2025-08-20

Changed

• Do not configure report_memleaks setting (which will be deprecated in PHP 8.5) for PHPT processes

[12.3.5] - 2025-08-16

Changed

• #6319: Detect premature end of PHPUnit's main PHP process
• #6321: Allow error_reporting=E_ALL for --check-php-configuration

Fixed

• #5863: TestDox printer does not show previous exception
• #6102: expectUserDeprecationMessage*() fails when test is run in separate process

Commits

• a2cab32 Prepare release
• 9c3bdb3 Merge branch '11.5' into 12.3
• 3e4c6ef Prepare release
• fd4e1be Merge branch '10.5' into 11.5
• 3276847 Prepare release
• 15abdf1 Merge branch '9.6' into 10.5
• 049c011 Prepare release
• 1ce0f2d Merge branch '8.5' into 9.6
• e1d7ab6 Prepare release
• 5f9f7d8 Update tools
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.