build(deps-dev): bump carthage-software/mago from 1.26.0 to 1.27.0

[dependabot]

Bumps carthage-software/mago from 1.26.0 to 1.27.0.

Release notes

Sourced from carthage-software/mago's releases.

Mago 1.27.0

A feature release built around Mago\Available* attributes for version-gating PHP symbols, several formatter additions for attribute ordering and multi-trait use splits under PER-CS/PSR-12, a hierarchy-aware Class::method form for class-initializers, and a namespaced mode for no-fully-qualified-global-function that imports the parent namespace instead of the function. The rest is a batch of analyzer narrowings, a mago lint --only CLI fix, the long-standing PHP 8.4 inline new X()->method() formatter fix, and docs work (playground contrast, version-switch keeping you on the same page).

✨ Features

Codex

• Mago\Available* attributes: version-gate symbols across codex, analyzer, prelude, and composer. (#1113, 7a59a92d)

Analyzer

• Class::method in class-initializers: scope an initializer to a class hierarchy via Foo::configure. (#1684, 6fb88c6a)

Linter

• namespaced option on no-fully-qualified-global-function: import the namespace, not the function. (#1804, af492481)
• no-negated-ternary covers !==, !=, <>: rule now flags negated comparisons beyond !=. (#1825, 629cbe65)
• no-assign-in-condition while opt-out: optionally ignore while statements. (#1819, 47e3118f)

Formatter

• attributes-order + separate-attributes options: control attribute ordering and grouping. (#1820, 0e835ef0)
• Multi-trait use split: one trait per use statement under PER-CS / PSR-12. (#1807, e06da322)

Reporting

• Structured baseline diff: --verify-baseline --reporting-format json emits a structured diff. (#1812, e5d26d61)

Testing

• Standalone integration test runner: independent harness for cross-crate integration tests. (#1805, 56e64143)

🐛 Bug Fixes

Analyzer

• array_filter / array_all callback narrowing: lift callback assertions onto array values from mixed. (#1801, 60e34a95)
• Property narrowings across opaque calls: preserved when the call cannot see the property. (#1811, c1bce5b8)
• Relational comparisons on arrays: warns when one operand may be an array. (#1815, f8431087)
• array_all unwrap: replaced with let-binding to avoid panicking on unexpected shapes. (ab1792c4)

Codex

• Generic index parameters in TIndexAccess: now expanded so T[K] resolves through bounds. (#1810, 03791963)

Linter

• no-is-null autofix: clean null === $x / null !== $x output across negation, parens, and double-negation. (#1821, 45f7972a)

... (truncated)

Commits

• ac8e262 release: 1.27.0
• a27851a fix(docs): improve playground selection, link, and sidebar contrast
• ef0b0e0 fix(docs): record per-version paths so version-switch keeps you on the same page
• 6fb88c6 feat(analyzer): support Class::method qualifiers in class-initializers
• 45f7972 fix(linter): normalize no-is-null autofix output across negation and parens
• 81cae5c fix(cli): stop --only from swallowing positional paths in mago lint
• af49248 feat(linter): add namespaced option to no-fully-qualified-global-function
• a91604a fix(formatter): count tab width when measuring line length for wrapping
• a70b2ef fix(formatter): emit PHP 8.4 inline when both paren options are off
• 4e911a0 refactor(formatter): rename split_trait_use to separate_trait_use
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

Superseded by #4258.