Bump phpseclib/phpseclib from 3.0.52 to 3.0.54 in the php group across 1 directory#2158
Open
dependabot[bot] wants to merge 1 commit into
Open
Bump phpseclib/phpseclib from 3.0.52 to 3.0.54 in the php group across 1 directory#2158dependabot[bot] wants to merge 1 commit into
dependabot[bot] wants to merge 1 commit into
Annotations
11 errors and 1 warning
|
Import Security Analysis results into GitHub Security Code Scanning
CodeQL Action major versions v1 and v2 have been deprecated. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2025-01-10-code-scanning-codeql-action-v2-is-now-deprecated/
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L49
src/ActivityPub/ActorHandle.php:49:21: PossiblyUnusedMethod: Cannot find any calls to method App\ActivityPub\ActorHandle::isValid (see https://psalm.dev/087)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L43
src/ActivityPub/ActorHandle.php:43:49: RiskyTruthyFalsyComparison: Operand of type null|string contains type string, which can be falsy and truthy. This can cause possibly unexpected behavior. Use strict comparison instead. (see https://psalm.dev/356)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L43
src/ActivityPub/ActorHandle.php:43:21: RiskyTruthyFalsyComparison: Operand of type null|string contains type string, which can be falsy and truthy. This can cause possibly unexpected behavior. Use strict comparison instead. (see https://psalm.dev/356)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L42
src/ActivityPub/ActorHandle.php:42:24: MixedArgument: Argument 1 of preg_match cannot be mixed, expecting string (see https://psalm.dev/030)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L40
src/ActivityPub/ActorHandle.php:40:28: MissingPureAnnotation: isHandle must be marked @psalm-pure to aid security analysis, run with --alter --issues=MissingPureAnnotation to fix this (see https://psalm.dev/363)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L27
src/ActivityPub/ActorHandle.php:27:20: UnsafeInstantiation: Cannot safely instantiate class App\ActivityPub\ActorHandle with "new static" as its constructor might change in child classes (see https://psalm.dev/229)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L26
src/ActivityPub/ActorHandle.php:26:24: MixedArgument: Argument 1 of preg_match cannot be mixed, expecting string (see https://psalm.dev/030)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L11
src/ActivityPub/ActorHandle.php:11:21: MissingPureAnnotation: __construct must be marked @psalm-mutation-free to aid security analysis, run with --alter --issues=MissingPureAnnotation to fix this (see https://psalm.dev/363)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L9
src/ActivityPub/ActorHandle.php:9:18: MissingClassConstType: Class constant "App\ActivityPub\ActorHandle::HANDLE_PATTERN" should have a declared type. (see https://psalm.dev/359)
|
|
Psalm Security Scan by Mbin:
src/ActivityPub/ActorHandle.php#L7
src/ActivityPub/ActorHandle.php:7:7: ClassMustBeFinal: Class App\ActivityPub\ActorHandle is never extended and is not part of the public API, and thus must be made final. (see https://psalm.dev/361)
|
|
Complete job
Node.js 20 is deprecated. The following actions target Node.js 20 but are being forced to run on Node.js 24: github/codeql-action/upload-sarif@v2. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
background
wait
wait-all
cancel
parallel
Loading