Bump sirbrillig/phpcs-variable-analysis from 2.2.0 to 2.8.2

[dependabot-preview]

Bumps sirbrillig/phpcs-variable-analysis from 2.2.0 to 2.8.2.

Release notes

Sourced from sirbrillig/phpcs-variable-analysis's releases.

v2.8.2

Changelog

This is a backport of the bugfixes from 3.0.0-beta.1 into the 2.x version without any of the PHPCSUtils changes.

• Fix comment tolerance for many sniffs (huge props to @jrfnl)
• Clean up package structure (@jrfnl also, for the most part)
• Only allow unused values in associative foreach loops with option (#167)
• Fix unused-before-used detection (#171)

v2.8.2-beta.1

Changelog

This is a backport of the bugfixes in 3.0.0-beta.1 into the 2.x version without any of the PHPCSUtils changes. Because of the nature of a backport, this is a test release to make sure everything works properly before I do a proper release of 2.8.2.

• Fix comment tolerance for many sniffs (huge props to @jrfnl)
• Clean up package structure (@jrfnl also, for the most part)
• Only allow unused values in associative foreach loops with option (#167)
• Fix unused-before-used detection (#171)

v2.8.1

Changelog

This is a small bug fix release with a bunch of test and package clean-up from brave contributors @jrfnl and @alexpott. Thanks, friends! ❤️

• Make assignment of a reference variable be considered a use (#128)
• Bug fix: false negative unused var (#120)
• PHPStan: document run parameters in project ruleset (#122)
• Composer: update PHPCS Composer plugin dependency (#121)
• Bug fix: $this in nested function declaration (#119)
• Documentation: minor fixes (#123)
• Remove stray composer.lock file (#117)
• Tests: simplify the PHPCS setup method [1] (#115)
• Composer: make the PHPUnit requirements more flexible (#114)
• Tests: allow them to work cross-platform (#108)
• Composer: update DealerDirect Composer plugin requirement (#112)
• PHPCS: document run parameters in project ruleset (#107)
• PHPUnit config: add testsuite name (#113)
• Bug fix: recognize use of self/static within anonymous class (#110)
• Composer: move PHPCS dependency to require (#106)

v2.8.0

Changelog

• Add apcu_* functions to getPassByReferenceFunctions (#103)
• Tests: Make sure fixtures are valid php
• Add sniff codes to README (#100)
• Mention phpcs-changed in README (#97)
• Update README to include phpstan and linting (#96)
• Refactor methods to have nullable return types (#95)

... (truncated)

Commits

• 4a60e8b Fix unused-before-used detection (#171)
• c905c40 Move test directory out of package path (#168)
• 144e1f2 Tests: fix namespace (#164)
• 89616c0 Only allow unused values in associative foreach loops with option (#167)
• f81ca4b Add .gitattributes (#163)
• 6774484 Change standalone install instructions to use latest release (#161)
• 15b1465 VariableAnalysisSniff::checkForPassByReferenceFunctionCall(): fix comment tol...
• e5bee2d VariableAnalysisSniff::checkForAssignment(): fix comment tolerance (#157)
• 2a1bf60 Helper::areAnyConditionsAClosure(): remove unused method (#142)
• f62b88e VariableAnalysisSniff::processCompactArguments(): fix comment tolerance (#155)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)