composer(deps-dev): bump vimeo/psalm from 4.9.3 to 4.16.1

[dependabot]

Bumps vimeo/psalm from 4.9.3 to 4.16.1.

Release notes

Sourced from vimeo/psalm's releases.

4.16.1

What's Changed

Fixes

• Use strpos instead of str_contains by @​weirdan in vimeo/psalm#7220

Full Changelog: vimeo/psalm@4.16.0...4.16.1

4.16.0

What's Changed

Removed

• Codebase::$use_referencing_files, Context::$possible_param_types and FunctionLikeStorage::$template_covariants were removed. We do not believe they were used by anyone, thus we don't consider it to be a BC break

Features

• Detect unused properties that are written to inside arrays by @​muglug in vimeo/psalm#7129
• Allow operator overloading for Decimal extension (fixes #3938). by @​AndrolGenhald in vimeo/psalm#7103
• Fix count_chars stubs by @​kamil-tekiela in vimeo/psalm#7094
• Added support for first-class callables by @​trowski in vimeo/psalm#7113
• Allow suppressing UnusedPsalmSuppress, remove unused suppressions. by @​AndrolGenhald in vimeo/psalm#7133
• Forbid positional arg after named arg by @​klimick in vimeo/psalm#7136
• in_array returns false in strict mode if types are incompatibles by @​mathroc in vimeo/psalm#7141
• "No errors found!" message is now printed within a nice green block by @​SMAtaurRahman in vimeo/psalm#7150
• Use igbinary for communication between processes if possible by @​sj-i in vimeo/psalm#7162
• Add Set::map() to ext-ds stub by @​simPod in vimeo/psalm#7156
• Improve project files discovery performance by @​dvz in vimeo/psalm#7161
• allow marking enum cases as deprecated by @​pilif in vimeo/psalm#7192

Fixes

• Fix non-empty-literal-string to behave as subtype of non-empty-string (fixes #7095). by @​AndrolGenhald in vimeo/psalm#7105
• fix reconciliation between positive-int and inferior/superior assertions by @​orklah in vimeo/psalm#7106
• don't stop analyzing array, even if we already have a type and we can't create an object like by @​orklah in vimeo/psalm#7093
• fix missing case for displaying varId by @​orklah in vimeo/psalm#7054
• array_count_values return type for uncertain arrays by @​weirdan in vimeo/psalm#7115
• Class property issue suppression fixes. by @​AndrolGenhald in vimeo/psalm#7130
• Fix type inference of closure params by @​klimick in vimeo/psalm#7135
• Fix closure param type inference with named params by @​klimick in vimeo/psalm#7139
• Post-assertions in loops by @​klimick in vimeo/psalm#7143
• fix CI by @​orklah in vimeo/psalm#7153
• Fix optional arguments in number_format (fixes #7158). by @​AndrolGenhald in vimeo/psalm#7159
• Fix ldap_set_rebind_proc signature by @​villfa in vimeo/psalm#7145
• Fixed compatibility with SoapClient by @​yethee in vimeo/psalm#7140
• display class-strings in keyed arrays syntax and allow using them for assertions by @​orklah in vimeo/psalm#7152
• ISSUE-5962 Fixed wrong line number for @​method annotations by @​nowaja in vimeo/psalm#7157
• Fix conflicting array_map return provider fake variables. by @​AndrolGenhald in vimeo/psalm#7167
• Fix faulty comparison with typed closure by @​muglug in vimeo/psalm#7175
• doesn't infer empty for ReflectionClass::getAttributes without params by @​orklah in vimeo/psalm#7180
• Fixed ignoreTypeStats & useStrictTypes flag value detection for directories in config by @​SMAtaurRahman in vimeo/psalm#7182
• fix #7178 again by @​orklah in vimeo/psalm#7189

... (truncated)

Commits

• aa7e400 Merge pull request #7220 from weirdan/upstream-master
• b664d58 Use psalm forks of end-to-end SUTs
• 7bb737b Allow composer-versions-deprecated in box build env
• 9387942 Use strpos instead of str_contains
• aea1cba Merge pull request #7217 from weirdan/restore-constant-attributes-storage
• 08413d7 Restore attributes in ClassConstantStorage
• 18c790e Remove never-used equality flags
• 4dfc7ce Prevent unnecessary construction of union types during truthiness checks
• 75e4e0b Revert "Inline possibly_undefined checks"
• e2a0167 Inline possibly_undefined checks
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov]

Codecov Report

Merging #517 (8d4a308) into main (26863cf) will not change coverage.
The diff coverage is n/a.

@@             Coverage Diff             @@
##                main      #517   +/-   ##
===========================================
  Coverage     100.00%   100.00%           
  Complexity        87        87           
===========================================
  Files             12        12           
  Lines            302       302           
===========================================
  Hits             302       302           

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 26863cf...8d4a308. Read the comment docs.

[dependabot]

Superseded by #523.