Skip to content

chore(deps): bump the production-dependencies group with 5 updates #3767

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
ildyria merged 1 commit into from
Oct 28, 2025
Merged

chore(deps): bump the production-dependencies group with 5 updates #3767

ildyria merged 1 commit into from
Oct 28, 2025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Oct 27, 2025

Bumps the production-dependencies group with 5 updates:

Package From To
dedoc/scramble 0.12.36 0.13.1
farzai/color-palette 1.1.0 1.1.1
laravel/framework 12.34.0 12.35.1
laravel/socialite 5.23.0 5.23.1
moneyphp/money 4.7.1 4.8.0

Updates dedoc/scramble from 0.12.36 to 0.13.1

Release notes

Sourced from dedoc/scramble's releases.

v0.13.1

What's Changed

Full Changelog: dedoc/scramble@v0.13.0...v0.13.1

v0.13.0

While this release has no breaking changes itself, the resulting OpenAPI document may be more accurate for your specific application, and hence may be considered as the one containing breaking changes. Due to this, I've decided to mark this release as 0.13.x. It means that you'll need to explicitly update the version in composer.json if you rely on ^0.12.0 or earlier versions.

Full type inference

Starting from Laravel 11.x (and especially from 12.x), Laravel comes with great and accurate PHPDoc annotations. With Scramble supporting these types, you'll enjoy focusing more on the app codebase rather than writing type annotations.

use App\Models\Appointment;
Route::get('/appointments', function (Request $request) {
$items = Appointment::query()
->where('status', $request->string('status'))
->get();
return $items;

});

In this case, Scramble can infer the type of $items: it is a collection of appointments, specifically: Illuminate\Database\Eloquent\Collection<int, App\Models\Appointment>!

This gives nice documentation just by analyzing the source, without any additional annotations.

Closure-based routes support

Previously, Scramble only supported controller-based routes. Now, the routes defined using closures also get their share of love and are documented automatically.

Closure-based routes support all the attributes (for manual parameters, headers, responses, etc.) that are supported by controller-based methods.

What's Changed

New Contributors

Full Changelog: dedoc/scramble@v0.12.36...v0.13.0

Commits
  • 1cf25c2 Expose more internal type inference related APIs (#1006)
  • 0c4a172 fix closure routes names
  • 57dfa62 Add Request@user method support for better post-installation experience (#1...
  • 304c954 Fixes redundant argument types resolution (#1000)
  • 530fc22 Merge branch '0.12.x'
  • 67384a3 Fix styling
  • 9054f9f Restricted attribute format for date_format rule (#983)
  • 41c3705 Fix styling
  • ada55ae [change] Support enum names extension property (#981)
  • 642461d Add support for wildcard array keys in validation rules (#993)
  • Additional commits viewable in compare view

Updates farzai/color-palette from 1.1.0 to 1.1.1

Changelog

Sourced from farzai/color-palette's changelog.

Changelog

All notable changes to color-palette will be documented in this file.

Commits
  • c07412f docs: remove full documentation section, move to another site
  • d3e2140 Implement complete just-the-docs navigation structure
  • 102fa64 Fix SCSS import error for just-the-docs remote theme
  • 4d49819 Fix GitHub Pages 404 errors for CSS and favicon
  • 5c7a905 Update docs
  • 3bac979 Update CHANGELOG
  • See full diff in compare view

Updates laravel/framework from 12.34.0 to 12.35.1

Release notes

Sourced from laravel/framework's releases.

v12.35.1

v12.35.0

Changelog

Sourced from laravel/framework's changelog.

v12.35.1 - 2025-10-23

v12.35.0 - 2025-10-21

Commits

Updates laravel/socialite from 5.23.0 to 5.23.1

Release notes

Sourced from laravel/socialite's releases.

v5.23.1

Full Changelog: laravel/socialite@v5.23.0...v5.23.1

Changelog

Sourced from laravel/socialite's changelog.

v5.23.1 - 2025-10-27

Full Changelog: laravel/socialite@v5.23.0...v5.23.1

Commits

Updates moneyphp/money from 4.7.1 to 4.8.0

Release notes

Sourced from moneyphp/money's releases.

v4.8.0

Release with support for PHP8.5.

Changelog

Sourced from moneyphp/money's changelog.

[4.8.0] - 2025-10-23

Added

  • PHP 8.5 support
Commits
  • b358727 add changelog
  • efe579a Fix typo in README.md (#815)
  • aa1a4b5 add full support for PHP 8.5 (#819)
  • 1f2a332 Merge pull request #818 from moneyphp/early_support_new_php
  • 90eef4e use correct naming, we test new versions, support only happens once we can ad...
  • cc6b473 allow early support tests to fail
  • a12b11b Fix PHP 8.5 setlocale
  • 3a7a3b5 Build with upcoming PHP version
  • d418dd8 Add PHP version 8.5 to CI workflow
  • 7e86cc5 copyright year
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
chore(deps): bump the production-dependencies group with 5 updates
d7f1ba7 
Bumps the production-dependencies group with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [dedoc/scramble](https://github.com/dedoc/scramble) | `0.12.36` | `0.13.1` |
| [farzai/color-palette](https://github.com/parsilver/color-palette-php) | `1.1.0` | `1.1.1` |
| [laravel/framework](https://github.com/laravel/framework) | `12.34.0` | `12.35.1` |
| [laravel/socialite](https://github.com/laravel/socialite) | `5.23.0` | `5.23.1` |
| [moneyphp/money](https://github.com/moneyphp/money) | `4.7.1` | `4.8.0` |


Updates `dedoc/scramble` from 0.12.36 to 0.13.1
- [Release notes](https://github.com/dedoc/scramble/releases)
- [Commits](dedoc/scramble@v0.12.36...v0.13.1)

Updates `farzai/color-palette` from 1.1.0 to 1.1.1
- [Release notes](https://github.com/parsilver/color-palette-php/releases)
- [Changelog](https://github.com/parsilver/color-palette-php/blob/main/CHANGELOG.md)
- [Commits](parsilver/color-palette-php@1.1.0...1.1.1)

Updates `laravel/framework` from 12.34.0 to 12.35.1
- [Release notes](https://github.com/laravel/framework/releases)
- [Changelog](https://github.com/laravel/framework/blob/12.x/CHANGELOG.md)
- [Commits](laravel/framework@v12.34.0...v12.35.1)

Updates `laravel/socialite` from 5.23.0 to 5.23.1
- [Release notes](https://github.com/laravel/socialite/releases)
- [Changelog](https://github.com/laravel/socialite/blob/5.x/CHANGELOG.md)
- [Commits](laravel/socialite@v5.23.0...v5.23.1)

Updates `moneyphp/money` from 4.7.1 to 4.8.0
- [Release notes](https://github.com/moneyphp/money/releases)
- [Changelog](https://github.com/moneyphp/money/blob/master/CHANGELOG.md)
- [Commits](moneyphp/money@v4.7.1...v4.8.0)

---
updated-dependencies:
- dependency-name: dedoc/scramble
  dependency-version: 0.13.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: farzai/color-palette
  dependency-version: 1.1.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: laravel/framework
  dependency-version: 12.35.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
- dependency-name: laravel/socialite
  dependency-version: 5.23.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: production-dependencies
- dependency-name: moneyphp/money
  dependency-version: 4.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: production-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Oct 27, 2025
@dependabot dependabot bot requested a review from a team as a code owner October 27, 2025 20:34
@dependabot dependabot bot added dependencies Pull requests that update a dependency file php Pull requests that update Php code labels Oct 27, 2025
@coderabbitai
Copy link

coderabbitai bot commented Oct 27, 2025

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Comment @coderabbitai help to get the list of available commands and usage tips.

@ildyria ildyria enabled auto-merge (squash) October 28, 2025 21:29
@ildyria ildyria merged commit 0fd6a9c into master Oct 28, 2025
69 of 72 checks passed
@ildyria ildyria deleted the dependabot/composer/production-dependencies-2f94ea786d branch October 28, 2025 21:47
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@ildyria ildyria ildyria approved these changes

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file php Pull requests that update Php code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@ildyria