Dependency Dashboard

This issue lists Renovate updates and detected dependencies. Read the [Dependency Dashboard](https://docs.renovatebot.com/key-concepts/dashboard/) docs to learn more.<br>[View this repository on the Mend.io Web Portal](https://developer.mend.io/github/rossaddison/invoice).

## Rate-Limited

The following updates are currently rate-limited. To force their creation now, click on a checkbox below.

 - [ ] chore(deps): update dependency brick/math to v0.18.0
 - [ ] chore(deps): update dependency cycle/annotated to v4.6.0
 - [ ] chore(deps): update dependency guzzlehttp/guzzle to v7.12.0
 - [ ] chore(deps): update dependency guzzlehttp/psr7 to v2.12.0
 - [ ] chore(deps): update dependency phpunit/phpunit to v13.2.1
 - [ ] 🔐 **Create all rate-limited PRs at once** 🔐

## Open

The following updates have all been created. To force a retry/rebase of any, click on a checkbox below.

 - [ ] [chore(deps): update github/codeql-action digest to 0337b99](../pull/912)
 - [ ] [chore(deps): update dependency @typescript/native-preview to v7.0.0-dev.20260616.1](../pull/826)
 - [ ] [chore(deps): update dependency dg/bypass-finals to v1.10.2](../pull/910)
 - [ ] [chore(deps): update dependency friendsofphp/php-cs-fixer to v3.95.8](../pull/916)
 - [ ] [chore(deps): update dependency phpseclib/phpseclib to v3.0.55](../pull/909)
 - [ ] [chore(deps): update typescript-eslint monorepo to v8.61.1](../pull/913) (`@typescript-eslint/eslint-plugin`, `@typescript-eslint/parser`)
 - [ ] [chore(deps): update vitest monorepo to v4.1.9](../pull/911) (`@vitest/coverage-v8`, `vitest`)
 - [ ] [chore(deps): update dependency braintree/braintree_php to v6.36.0](../pull/914)
 - [ ] [chore(deps): update dependency cycle/orm to v2.18.0](../pull/915)
 - [ ] [chore(deps): update dependency zircote/swagger-php to v6.2.0](../pull/908)
 - [ ] **Click on this checkbox to rebase all open PRs at once**

## Detected Dependencies

<details><summary>composer (1)</summary>
<blockquote>

<details><summary>composer.json (123)</summary>

 - `php 8.4 - 8.5`
 - `amzn/amazon-pay-api-sdk-php ^2.7.0`
 - `braintree/braintree_php >=6.35.0` → [Updates: `>=6.35.0`]
 - `brick/math >=0.17` → [Updates: `>=0.17`]
 - `brick/money >=0.13`
 - `cebe/markdown ^1.2.1@dev`
 - `chillerlan/php-qrcode ^6.0.1`
 - `cycle/annotated ^4.5.0` → [Updates: `^4.5.0`]
 - `cycle/database ^2.20.0`
 - `cycle/entity-behavior ^1.7.1`
 - `cycle/orm ^2.17.0` → [Updates: `^2.17.0`]
 - `cycle/schema-provider ^1.0`
 - `digitalbazaar/json-ld ^0.4.8`
 - `doctrine/collections >2.6.0`
 - `fakerphp/faker ^1.24.1`
 - `google/cloud-translate ^2.3.0`
 - `guzzlehttp/guzzle >=7.11.1` → [Updates: `>=7.11.1`]
 - `guzzlehttp/psr7 >=2.11.0` → [Updates: `>=2.11.0`]
 - `httpsoft/http-message ^1.1.6`
 - `league/iso3166 ^4.4.0`
 - `maglnet/composer-require-checker ^4.24.0`
 - `mollie/mollie-api-php >=3.13.1`
 - `mpdf/mpdf ^8.3.1`
 - `nyholm/psr7 ^1.8.2`
 - `php-http/curl-client ^2.4.0`
 - `php-http/guzzle7-adapter ^1.1`
 - `php-standard-library/php-standard-library ^6.2.1`
 - `phpseclib/phpseclib >=3.0.53` → [Updates: `>=3.0.53`]
 - `phptg/bot-api >=0.21.1`
 - `promphp/prometheus_client_php >=2.15.1`
 - `psalm/plugin-symfony ^5.3.0`
 - `psr/container ^2.0.2`
 - `psr/http-client >=1.0.3`
 - `psr/http-factory ^1.1`
 - `psr/http-message ^2.0`
 - `psr/http-server-handler ^1.0.2`
 - `psr/http-server-middleware ^1.0.2`
 - `psr/log ^3.0.2`
 - `ramsey/uuid >=4`
 - `robrichards/xmlseclibs ^3.1.5`
 - `rossaddison/yii-gii *`
 - `sabre/xml ^4.1.0`
 - `setasign/fpdf ^1.9.0`
 - `spomky-labs/otphp ^11.5.0`
 - `stripe/stripe-php >=19`
 - `symfony/console >=8.1.0`
 - `symfony/process >=8.1.0`
 - `vlucas/phpdotenv ^5.6.3`
 - `yiisoft/access ^2.0.1`
 - `yiisoft/aliases ^3.1.1`
 - `yiisoft/arrays ^3.2.1`
 - `yiisoft/assets ^5.1.2`
 - `yiisoft/auth ^3.2.1`
 - `yiisoft/cache ^3.2`
 - `yiisoft/cache-file ^3.2`
 - `yiisoft/config ^1.6.2`
 - `yiisoft/cookies ^1.2.4`
 - `yiisoft/csrf ^2.2.3`
 - `yiisoft/data ^2.0.0`
 - `yiisoft/data-response ^2.2.0`
 - `yiisoft/db ^2.0.1`
 - `yiisoft/db-mysql ^2`
 - `yiisoft/definitions ^3.4.1`
 - `yiisoft/di ^1.4.1`
 - `yiisoft/error-handler ^4.3.2`
 - `yiisoft/factory ^1.3.1`
 - `yiisoft/files ^2.1`
 - `yiisoft/form ^1.5.2`
 - `yiisoft/form-model ^1.1.1`
 - `yiisoft/friendly-exception ^1.2`
 - `yiisoft/html >=4.2`
 - `yiisoft/http ^1.3`
 - `yiisoft/i18n ^1.2.2`
 - `yiisoft/injector ^1.2.1`
 - `yiisoft/input-http >=1.0.1`
 - `yiisoft/json ^1.1`
 - `yiisoft/log >=2.2.1`
 - `yiisoft/log-target-file >=3.1`
 - `yiisoft/mailer ^6.1.0`
 - `yiisoft/mailer-symfony ^4.0.1`
 - `yiisoft/middleware-dispatcher ^5.4`
 - `yiisoft/rbac ^2.1.2`
 - `yiisoft/rbac-cycle-db >=3`
 - `yiisoft/rbac-php >=2.1`
 - `yiisoft/rbac-rules-container >=2.1`
 - `yiisoft/request-provider ^1.3`
 - `yiisoft/router ^4.0.2`
 - `yiisoft/router-fastroute ^4.0.3`
 - `yiisoft/security ^1.2.0`
 - `yiisoft/session ^3.0.1`
 - `yiisoft/strings ^2.7`
 - `yiisoft/translator ^3.2.1`
 - `yiisoft/translator-message-php ^1.1.2`
 - `yiisoft/user ^2.3.2`
 - `yiisoft/validator ^2.6.0`
 - `yiisoft/var-dumper ^1.7.1`
 - `yiisoft/view ^12.2.4`
 - `yiisoft/widget ^2.2.2`
 - `yiisoft/yii-console ^2.4.2`
 - `yiisoft/yii-dataview >=1.1`
 - `yiisoft/yii-event ^2.2`
 - `yiisoft/yii-http ^1.1.1`
 - `yiisoft/yii-middleware ^1.1.2`
 - `yiisoft/yii-runner-console ^2.2.1`
 - `yiisoft/yii-runner-http ^3.2.1`
 - `yiisoft/yii-view-renderer ^7.4.1`
 - `zircote/swagger-php >=6.1.2` → [Updates: `>=6.1.2`]
 - `codeception/c3 ^2.9`
 - `codeception/codeception ^5.3.5`
 - `codeception/module-asserts ^3.3.0`
 - `codeception/module-cli ^2.0.1`
 - `codeception/module-phpbrowser ^4.0.0`
 - `dg/bypass-finals ^1.10.1` → [Updates: `^1.10.1`]
 - `friendsofphp/php-cs-fixer ^3.95.6` → [Updates: `^3.95.6`]
 - `guzzlehttp/promises >=2.5.0`
 - `phpunit/phpunit >=13` → [Updates: `>=13`]
 - `rector/rector ^2.4.5`
 - `roave/better-reflection ^6.71`
 - `roave/infection-static-analysis-plugin >=1.44`
 - `shipmonk/composer-dependency-analyser ^1.8.4`
 - `spatie/phpunit-watcher >=1.24.4`
 - `squizlabs/php_codesniffer ^4.0.1`
 - `vimeo/psalm >=6.16.1`

</details>

</blockquote>
</details>

<details><summary>docker-compose (2)</summary>
<blockquote>

<details><summary>docker-compose.yml (3)</summary>

 - `yiisoftware/yii-php 8.3-apache`
 - `mysql 9.7`
 - `wiremock/wiremock 3x-alpine`

</details>

<details><summary>monitoring/docker/docker-compose.yml (2)</summary>

 - `mysql 9.7`
 - `redis 8-alpine`

</details>

</blockquote>
</details>

<details><summary>dockerfile (4)</summary>
<blockquote>

<details><summary>docker/dev/nginx/Dockerfile (1)</summary>

 - `nginx 1.31.1-alpine`

</details>

<details><summary>docker/dev/php/Dockerfile (2)</summary>

 - `php 8.5.7-fpm-alpine`
 - `composer 2`

</details>

<details><summary>docker/prod/nginx/Dockerfile (1)</summary>

 - `nginx 1.31.1-alpine3.23-slim`

</details>

<details><summary>docker/prod/php/Dockerfile (2)</summary>

 - `php 8.5.7-fpm-alpine`
 - `composer 2`

</details>

</blockquote>
</details>

<details><summary>github-actions (8)</summary>
<blockquote>

<details><summary>.github/workflows/benchmark.yml (4)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `ramsey/composer-install 4.0.0@65e4f84970763564f46a70b8a54b90d033b3bdda`
 - `actions/upload-artifact v7@043fb46d1a93c77aae656e7c1c64a875d1fc6a0a`

</details>

<details><summary>.github/workflows/codeql.yml (3)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `github/codeql-action v4@8aad20d150bbac5944a9f9d289da16a4b0d87c1e`
 - `github/codeql-action v4@8aad20d150bbac5944a9f9d289da16a4b0d87c1e`

</details>

<details><summary>.github/workflows/cs.yml (3)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `peter-evans/create-pull-request v8@5f6978faf089d4d20b00c7766989d076bb2fc7f1`

</details>

<details><summary>.github/workflows/eslint.yml (2)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `github/codeql-action main@f3f1edbedfb4a1d188d344570834df2996d45d39` → [Updates: `main`]

</details>

<details><summary>.github/workflows/invoice_build.yml (10)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `actions/setup-node v6@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e`
 - `SonarSource/sonarqube-scan-action v8.2.0@713881670b6b3676cda39549040e2d88c70d582e`
 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae`
 - `actions/setup-node v6@48b55a011bda9f5d6aeb4c2d9c7362e8dae4041e`
 - `node 24`
 - `node 24`

</details>

<details><summary>.github/workflows/invoice_dependency.yml (3)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae`

</details>

<details><summary>.github/workflows/invoice_static.yml (3)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae`

</details>

<details><summary>.github/workflows/php-cve-check.yml (4)</summary>

 - `actions/checkout v6@df4cb1c069e1874edd31b4311f1884172cec0e10`
 - `shivammathur/setup-php v2@f3e473d116dcccaddc5834248c87452386958240`
 - `actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae`
 - `actions/cache v5@27d5ce7f107fe9357f9df03efb73ab90386fccae`

</details>

</blockquote>
</details>

<details><summary>npm (1)</summary>
<blockquote>

<details><summary>package.json (47)</summary>

 - `@angular/compiler 22.0.1`
 - `bootstrap ^5.3.8`
 - `bootstrap-icons ^1.13.1`
 - `bs5-lightbox ^1.8.5`
 - `clipboard ^2.0.11`
 - `flag-icons ^7.5.0`
 - `govuk-frontend ^6.2.0`
 - `hono >=4.12.25`
 - `htmx.org ^2.0.10`
 - `rxjs ^7.8.2`
 - `tslib ^2.8.1`
 - `zone.js ^0.16.2`
 - `@angular-eslint/builder ^22.0.0`
 - `@angular-eslint/eslint-plugin ^22.0.0`
 - `@angular-eslint/eslint-plugin-template ^22.0.0`
 - `@angular-eslint/schematics ^22.0.0`
 - `@angular-eslint/template-parser ^22.0.0`
 - `@angular/cli 22.0.1`
 - `@angular/common 22.0.1`
 - `@angular/compiler-cli 22.0.1`
 - `@angular/core 22.0.1`
 - `@angular/platform-browser 22.0.1`
 - `@eslint/js ^10.0.1`
 - `@types/node ^25.9.3`
 - `@typescript-eslint/eslint-plugin ^8.61.0` → [Updates: `^8.61.0`]
 - `@typescript-eslint/parser ^8.61.0` → [Updates: `^8.61.0`]
 - `@typescript/native-preview ^7.0.0-dev.20260613.1` → [Updates: `^7.0.0-dev.20260613.1`]
 - `@vitest/coverage-v8 ^4.1.8` → [Updates: `^4.1.8`]
 - `esbuild ^0.28.1`
 - `eslint ^10.5.0`
 - `eslint-plugin-deprecation ^3.0.0`
 - `globals ^17.6.0`
 - `jsdom ^29.1.1`
 - `minimatch >=10.2.5`
 - `npm-check-updates ^22.2.3`
 - `picomatch ^4.0.4`
 - `prettier ^4.0.0-alpha.13`
 - `rollup >=4.62.0`
 - `typedoc ^0.28.19`
 - `typescript ^6.0.3`
 - `vitepress ^2.0.0-alpha.17`
 - `vitest ^4.1.8` → [Updates: `^4.1.8`]
 - `node ^22.22.3 || ^24.15.0 || >=26.0.0`
 - `npm >=10.0.0`
 - `webpack-dev-server ^5.2.4`
 - `uuid >=11.1.1`
 - `esbuild ^0.28.1`

</details>

</blockquote>
</details>

---

- [ ] Check this box to trigger a request for Renovate to run again on this repository

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Dependency Dashboard #111

Rate-Limited

Open

Detected Dependencies

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Uh oh!

Dependency Dashboard #111

Description

Rate-Limited

Open

Detected Dependencies

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions