chore(deps-dev): update phpmd/phpmd requirement from ^2.8 to ^2.10

[dependabot-preview]

Updates the requirements on phpmd/phpmd to permit the latest version.

Release notes

Sourced from phpmd/phpmd's releases.

PHPMD 2.10.0

Added

• Added #879: Documentation for Junit export with third party
• Added #836: Provide option to allow reference to a class in the root namespace without an import
• Added #856: Adds checkstyle compatible renderer, suitable for cs2pr or reviewdog
• Added #858 in #865: Add SARIF renderer.
• Added #873 and #876: Added option to baseline existing violations
• Added #861: Docs for GitHub renderer
• Added #868 In #869: Option to ignore globally-namespaced classes from MissingImport
• Added #834 : Add "tool" property to main "pmd" tag in XML report

Changed

• Changed #786: Add convenience method AbstractNode::findChildrenOfTypeVariable()
• Changed documentation: #874 #849 #724
• Changed #514 in #872: Change exit code on processing errors
• Changed: Internal code improvement #839 #875 #838 #862 #788 #830
• Changed #848 #864: Use GitHub actions

Fixed

• Fixed #673 in #782: Ignore dynamic class name from missing imports
• Fixed #577 in #844: Recognize compact variables with double quotes
• Fixed #818 in #822: Fix passing-by-reference detection
• Fixed #826 in #827: Consider foreach exception only for direct children
• Fixed #851 in #852: Fix multiple underscores in method name when allow-underscore-test is allowed
• Fixed #846 in #847: Catch DevelopmentCodeFragment with fully qualified functions
• Fixed #829 in #835: Fatal error while analyzing anonymous class
• Fixed #816 in #818: Fixed undefined index referring

Deprecated

• Deprecated: getIgnorePattern and setIgnorePattern on PHPMD\PHPMD see #772

Consult the changelog for the full history of noteworthy changes or browse through the list of commits since the last release.

Contributors to this release

We would like to thank all the contributors that helped make this release possible:

• @​a-menshchikov
• @​babanesma
• @​ComiR
• @​danepowell
• @​ffflabs
• @​frankdekker
• @​kamioftea
• @​kdebisschop
• @​kylekatarnls
• @​lukasbestle
• @​martzd
• @​ravage84
• @​SanderSander

... (truncated)

Changelog

Sourced from phpmd/phpmd's changelog.

phpmd-2.10.0 (2021/04/26)

• Added #879: Documentation for Junit export with third party
• Added #836: Provide option to allow reference to a class in the root namespace without an import
• Added #856: Adds checkstyle compatible renderer, suitable for cs2pr or reviewdog
• Added #858 in #865: Add SARIF renderer.
• Added #873 and #876: Added option to baseline existing violations
• Added #861: Docs for GitHub renderer
• Added #868 In #869: Option to ignore globally-namespaced classes from MissingImport
• Added #834 : Add "tool" property to main "pmd" tag in XML report
• Fixed #673 in #782: Ignore dynamic class name from missing imports
• Fixed #577 in #844: Recognize compact variables with double quotes
• Fixed #818 in #822: Fix passing-by-reference detection
• Fixed #826 in #827: Consider foreach exception only for direct children
• Fixed #851 in #852: Fix multiple underscores in method name when allow-underscore-test is allowed
• Fixed #846 in #847: Catch DevelopmentCodeFragment with fully qualified functions
• Fixed #829 in #835: Fatal error while analyzing anonymous class
• Fixed #816 in #818: Fixed undefined index referring
• Changed #786: Add convenience method AbstractNode::findChildrenOfTypeVariable()
• Changed documentation: #874 #849 #724
• Changed #514 in #872: Change exit code on processing errors
• Changed: Internal code improvement #839 #875 #838 #862 #788 #830
• Changed #848 #864: Use GitHub actions
• Deprecated: getIgnorePattern and setIgnorePattern on PHPMD\PHPMD see #772

phpmd-2.9.1 (2020/09/23)

• Fixed #714: Improved static member detection
• Fixed #816: Fixed undefined index referring

phpmd-2.9.0 (2020/09/02)

• Added #496: Added rule for PHP's @ operator
• Added #737: Allowed custom exclusion for StaticAccess by extending the class
• Added #749: Added allow-underscore option for CamelCaseParameterName & CamelCaseVariableName
• Added #747: Long variable subtract suffix
• Added #763 via #765: Added rules LongClassName and ShortClassName
• Fixed #743: Output for version
• Fixed #754: Fixed #720 undefined variable in foreach when passed by reference
• Fixed #764: Fixed #718 Handle anonymous class in "undefined variable" rule
• Fixed #770: Fixed #769 Handle deconstruction assignation for undefined variable
• Fixed #781: Fixed #714 static:: and self:: properties access
• Fixed #784: Fixed #672 Handle passing-by-reference in native PHP functions
• Fixed #793: Fixed #580 Raise UnusedFormalParameter instead UnusedLocalVariable for unused closure parameter
• Fixed #794: Fixed #540 Detect unused variable declared multiple times
• Fixed #805: Fixed #802 Prevent an error with nested arrays
• Fixed #807: Fixed #790 Fix for short variables rule inside foreach statements

... (truncated)

Commits

• 58ef9e7 Merge pull request #880 from phpmd/release/2.10.0
• e9f4388 Suppress EmptyCatchBlock for intended TODO
• 5962a32 Add 2.10.0 changelog
• d4fb18e Bump project.version
• 9f55026 Merge pull request #878 from kylekatarnls/feature/php-8
• 2ae08fc Merge pull request #828 from kylekatarnls/feature/issue-672-fallback-function...
• 9e531d6 Merge pull request #879 from phpmd/document-junit
• c6eec43 Merge pull request #836 from kdebisschop/reference-to-root-namespace-is-not-a...
• 45b14e6 Fix tests after rebase from master
• dea3ab2 Fix @​covers that was broken by change in function name
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)