chore(deps): update shivammathur/setup-php action to v2.31.1

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
shivammathur/setup-php	action	minor	2.30.5 -> 2.31.1

---

Release Notes

shivammathur/setup-php (shivammathur/setup-php)

v2.31.1

Compare Source

Changelog

• Fix installing PECL extensions on Windows with a build version #​855

• Fix cache support for ioncube extension #​856

• Updated Node.js dependencies.

For the complete list of changes, please refer to the Full Changelog

Follow for updates

v2.31.0

Compare Source

Changelog

• Added support for a fallback mirror for ondrej/php PPA when launchpad is down (#​834).

• Fixed installing packages on self-hosted environments with existing conf files (#​852).

• Fixed support for oci8 and pdo_oci extensions on ubuntu-24.04.

• Fixed support for couchbase extension on ubuntu-24.04.

• Fixed support for ubuntu-24.04 after apt-fast was dropped from the GA images.

• Fixed support for firebird extension on macos-14

• Fixed support for blackfire extension on macos-14.

• Fixed support for relay extension.

• Fixed support for phalcon extension for PHP 7.4 on Ubuntu.

• Updated Node.js dependencies.

For the complete list of changes, please refer to the Full Changelog

Follow for updates

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

OpenSSF Scorecard

Package	Version	Score	Details
actions/shivammathur/setup-php	c541c155eee45413f5b09a52248675b1a2575231	🟢 7.3	Details Check Score Reason Code-Review ⚠️ 0 Found 1/27 approved changesets -- score normalized to 0 Maintained 🟢 10 29 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 License 🟢 10 license file detected CII-Best-Practices 🟢 5 badge detected: Passing Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Packaging 🟢 10 packaging workflow detected SAST 🟢 7 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/shivammathur/setup-php	fc14643b0a99ee9db10a3c025a33d76544fa3761	🟢 7.3	Details Check Score Reason Code-Review ⚠️ 0 Found 1/27 approved changesets -- score normalized to 0 Maintained 🟢 10 29 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 License 🟢 10 license file detected CII-Best-Practices 🟢 5 badge detected: Passing Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Packaging 🟢 10 packaging workflow detected SAST 🟢 7 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/shivammathur/setup-php	c541c155eee45413f5b09a52248675b1a2575231	🟢 7.3	Details Check Score Reason Code-Review ⚠️ 0 Found 1/27 approved changesets -- score normalized to 0 Maintained 🟢 10 29 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 License 🟢 10 license file detected CII-Best-Practices 🟢 5 badge detected: Passing Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Packaging 🟢 10 packaging workflow detected SAST 🟢 7 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected
actions/shivammathur/setup-php	fc14643b0a99ee9db10a3c025a33d76544fa3761	🟢 7.3	Details Check Score Reason Code-Review ⚠️ 0 Found 1/27 approved changesets -- score normalized to 0 Maintained 🟢 10 29 commit(s) and 19 issue activity found in the last 90 days -- score normalized to 10 License 🟢 10 license file detected CII-Best-Practices 🟢 5 badge detected: Passing Branch-Protection ⚠️ -1 internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration Signed-Releases ⚠️ -1 no releases found Dangerous-Workflow 🟢 10 no dangerous workflow patterns detected Security-Policy 🟢 10 security policy file detected Binary-Artifacts 🟢 10 no binaries found in the repo Token-Permissions 🟢 9 detected GitHub workflow tokens with excessive permissions Fuzzing ⚠️ 0 project is not fuzzed Pinned-Dependencies ⚠️ 0 dependency not pinned by hash detected -- score normalized to 0 Packaging 🟢 10 packaging workflow detected SAST 🟢 7 SAST tool detected but not run on all commits Vulnerabilities 🟢 10 0 existing vulnerabilities detected

Scanned Manifest Files

.github/workflows/lint.yml

• shivammathur/setup-php@c541c15
• shivammathur/setup-php@fc14643

.github/workflows/static-code-analysis.yml

• shivammathur/setup-php@c541c15
• shivammathur/setup-php@fc14643

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud