Build(deps-dev): Bump vimeo/psalm from 3.8.3 to 3.8.4

[dependabot-preview]

Bumps vimeo/psalm from 3.8.3 to 3.8.4.

Release notes

Sourced from vimeo/psalm's releases.

3.8.4

Features

Class constant wildcards

Psalm now supports wildcards when specifying class constants. Instead of writing @psalm-param self::ERROR_ONE|self::ERROR_TWO, you can now write self::ERROR_* and Psalm will resolve all matching constants:

class A {
    const ERROR_ONE = 'some error';
    const ERROR_TWO = 'another error';
    const WARNING_THREE = 'some warning';
/**
 * @psalm-param self::ERROR_* $i
 */
public static function foo(string $i) : void {}

}
A::foo(A::ERROR_ONE);
A::foo(A::ERROR_TWO);
A::foo(A::WARNING_THREE); // this is an issue

(#2739)

Other features

• allow XML imports in Psalm config files - thanks @weirdan (#2635)
• @scottarc got Psalm running on PHP 8 (#2660)
• Support GitHub checks-compatible output with --output-format=github (#2678)
• @pilif added a config flag that allows you to specify the version of PHP that Psalm expects (#2715)
• added a new @psalm-readonly-allow-private-mutation annotation for public properties that you don't want to be editable outside the context of a class, but you do want to manipulate in private methods (#2729)

Bugfixes

• Prevent crashes when combining hard-to-resolve constants (#2623)
• Infer arrow function effects for array_filter (#2627)
• Allow constant arrays to be interpreted as lists (#2624)
• @ShiraNai7 re-fixed DOMXPath::query and added a generic version of DOMNamedNodeMap (#2703)
• @alfredbez fixed RarArchive signatures
• @l-x improved PDO::fetch return types
• Allow non-empty-list in @psalm-assert annotation (#2636)
• Explicit lists merged together are still lists (#2642)
• Improve type inference of autoloaded constants (#2644)
• Allow destructuring of a callable array (#2653)
• Fix conditional class definition using traits (#2645)
• Ensure template types are always defined as coming from docblocks (#2625)

... (truncated)

Commits

• c2972dd Allow sebastian/diff 4.0 to be installed
• a7355fa Update typing_in_psalm.md
• dcc855d Fix #2739 - specify wildcards in constants
• cecc5ed Move constant tests
• 4e36f6c Add explicit paths for included files
• 966336a Improve byref array handling
• da541db Remove some unnecessary errors
• e567f8c Fix #2752 - string casts can be implicit method calls, don’t remove automatic...
• 4cd4e17 Use up-to-date hash
• 23f8967 Fix conditional class-string template replacement
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot will merge this PR once CI passes on it, as requested by @ergebnis-bot.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in the .dependabot/config.yml file in this repo:

• Update frequency
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[codecov]

Codecov Report

Merging #102 into master will not change coverage.
The diff coverage is n/a.

@@           Coverage Diff           @@
##             master   #102   +/-   ##
=======================================
  Coverage       100%   100%           
  Complexity       20     20           
=======================================
  Files             1      1           
  Lines            53     53           
=======================================
  Hits             53     53

---

Continue to review full report at Codecov.

Legend - Click here to learn more
Δ = absolute <relative> (impact), ø = not affected, ? = missing data
Powered by Codecov. Last update 0c906e7...d4a7d7b. Read the comment docs.

[dependabot-preview]

Dependabot tried to automerge this PR, but received the following error from GitHub:

At least 1 approving review is required by reviewers with write access.