Bump automattic/vipwpcs from 0.3.1 to 1.0.0

[dependabot]

Bumps automattic/vipwpcs from 0.3.1 to 1.0.0.

Release notes

Sourced from automattic/vipwpcs's releases.

1.0.0

This release contains many breaking changes.

It requires PHP >= 5.6, PHPCS 3.2.3+, and WPCS 1.*. It does not work with WPCS 2.*.

Reorganisation and Renaming

The sniffs in VIPCS have been reorganised into different categories, with new sniff names and new violation codes. The changes are detailed in the table below. If you reference any of the old violations in your custom ruleset (to change severity, type, or message), or with // phpcs:ignore or // phpcs:disable, you will need to updates these references to the new violation codes.

Original Violation	New Violation
WordPressVIPMinimum.Actions.PreGetPostSniff.PreGetPosts	WordPressVIPMinimum.Hooks.PreGetPosts.PreGetPosts
WordPressVIPMinimum.Cache.BatcacheWhitelistedParams.strippedGetParam	WordPressVIPMinimum.Performance.BatcacheWhitelistedParams.StrippedGetParam
WordPressVIPMinimum.Cache.CacheValueOverride.CacheValueOverride	WordPressVIPMinimum.Performance.CacheValueOverride.CacheValueOverride
WordPressVIPMinimum.Cache.LowExpiryCacheTime.LowCacheTime	WordPressVIPMinimum.Performance.LowExpiryCacheTime.LowCacheTime
WordPressVIPMinimum.Classes.DeclarationCompatibility.DeclarationCompatibility	No change
WordPressVIPMinimum.Classes.RestrictedExtendClasses.wp_cli_wp_cli_command	WordPressVIPMinimum.Classes.RestrictedExtendClasses.wp_cli
WordPressVIPMinimum.Constants.ConstantsRestrictions.ConstantRestrictions	WordPressVIPMinimum.Constants.RestrictedConstants.DefiningRestrictedConstantWordPressVIPMinimum.Constants.RestrictedConstants.UsingRestrictedConstant
WordPressVIPMinimum.Constants.ConstantString.NotCheckingConstantName	No change
WordPressVIPMinimum.Files.IncludingFile.IncludingFile	WordPressVIPMinimum.Files.IncludingFile.UsingVariableWordPressVIPMinimum.Files.IncludingFile.UsingCustomConstantWordPressVIPMinimum.Files.IncludingFile.UsingCustomFunctionWordPressVIPMinimum.Files.IncludingFile.NotAbsolutePathWordPressVIPMinimum.Files.IncludingFile.ExternalURLWordPressVIPMinimum.Files.IncludingFile.RestrictedConstant
WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingSVGCSSFile	WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingSVGCSSFile
WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingNonPHPFile	WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingNonPHPFile
WordPressVIPMinimum.Filters.AlwaysReturn.voidReturn	WordPressVIPMinimum.Hooks.AlwaysReturnInFilter.VoidReturn
WordPressVIPMinimum.Filters.AlwaysReturn.missingReturnStatement	WordPressVIPMinimum.Hooks.AlwaysReturnInFilter.MissingReturnStatement
WordPressVIPMinimum.Filters.RestrictedHook.UploadMimes	WordPressVIPMinimum.Hooks.RestrictedHooks.upload_mimes_upload_mimes
WordPressVIPMinimum.Filters.RestrictedHook.HighTimeout	WordPressVIPMinimum.Hooks.RestrictedHooks.http_request_http_request_argsWordPressVIPMinimum.Hooks.RestrictedHooks.http_request_http_request_timeout
WordPressVIPMinimum.Functions.CheckReturnValue.CheckReturnValue	WordPressVIPMinimum.Functions.CheckReturnValue.DirectFunctionCallWordPressVIPMinimum.Functions.CheckReturnValue.NonCheckedVariable
WordPressVIPMinimum.Functions.CreateFunction.CreateFunction	WordPressVIPMinimum.Functions.RestrictedFunctions.create_function_create_function
WordPressVIPMinimum.Functions.DynamicCalls.DynamicCalls	No change
WordPressVIPMinimum.Functions.StripTags.StripTagsOneParameter	No change
WordPressVIPMinimum.Functions.StripTags.StripTagsTwoParameters	No change
WordPressVIPMinimum.JS.DangerouslySetInnerHTML.dangerouslySetInnerHTML	WordPressVIPMinimum.JS.DangerouslySetInnerHTML.Found
WordPressVIPMinimum.JS.HTMLExecutingFunctions.html	No change
WordPressVIPMinimum.JS.HTMLExecutingFunctions.append	No change
WordPressVIPMinimum.JS.HTMLExecutingFunctions.write	No change
WordPressVIPMinimum.JS.HTMLExecutingFunctions.writeln	No change
WordPressVIPMinimum.JS.InnerHTML.innerHTML	WordPressVIPMinimum.JS.InnerHTML.Found
WordPressVIPMinimum.JS.StringConcat.StringConcatNext	WordPressVIPMinimum.JS.StringConcat.Found
WordPressVIPMinimum.JS.StrippingTags.VulnerableTagStripping	No change
WordPressVIPMinimum.JS.Window.VarAssignment	No change
WordPressVIPMinimum.JS.Window.location	No change
WordPressVIPMinimum.JS.Window.name	No change
WordPressVIPMinimum.JS.Window.status	No change
WordPressVIPMinimum.Plugins.Zoninator.Zoninator	WordPressVIPMinimum.Compatibility.Zoninator.RequiresRESTAPI
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.{{{	WordPressVIPMinimum.Security.Mustache.OutputNotation
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.{{&	WordPressVIPMinimum.Security.Mustache.VariableNotation
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.delimeterChange	WordPressVIPMinimum.Security.Mustache.DelimiterChange
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.SafeString	WordPressVIPMinimum.Security.Mustache.SafeString
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputTwig.autoescape false	WordPressVIPMinimum.Security.Twig.AutoescapeFalse
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputTwig.raw	WordPressVIPMinimum.Security.Twig.RawFound

... (truncated)

Changelog

Sourced from automattic/vipwpcs's changelog.

[1.0.0] - 2019-04-24

This release contains many breaking changes.

It requires PHP >= 5.6, PHPCS 3.2.3+, and WPCS 1.*. It does not work with WPCS 2.*.

Props: GaryJones, rebeccahum, whyisjake, WPprodigy.

Reorganisation and Renaming

The sniffs in VIPCS have been reorganised into different categories, with new sniff names and new violation codes. The changes are detailed in the table below. If you reference any of the old violations in your custom ruleset (to change severity, type, or message), or with // phpcs:ignore or // phpcs:disable, you will need to updates these references to the new violation codes.

Original Violation	New Violation
WordPressVIPMinimum.Actions.PreGetPostSniff.PreGetPosts	WordPressVIPMinimum.Hooks.PreGetPosts.PreGetPosts
WordPressVIPMinimum.Cache.BatcacheWhitelistedParams.strippedGetParam	WordPressVIPMinimum.Performance.BatcacheWhitelistedParams.StrippedGetParam
WordPressVIPMinimum.Cache.CacheValueOverride.CacheValueOverride	WordPressVIPMinimum.Performance.CacheValueOverride.CacheValueOverride
WordPressVIPMinimum.Cache.LowExpiryCacheTime.LowCacheTime	WordPressVIPMinimum.Performance.LowExpiryCacheTime.LowCacheTime
WordPressVIPMinimum.Classes.DeclarationCompatibility.DeclarationCompatibility	No change
WordPressVIPMinimum.Classes.RestrictedExtendClasses.wp_cli_wp_cli_command	WordPressVIPMinimum.Classes.RestrictedExtendClasses.wp_cli
WordPressVIPMinimum.Constants.ConstantsRestrictions.ConstantRestrictions	WordPressVIPMinimum.Constants.RestrictedConstants.DefiningRestrictedConstantWordPressVIPMinimum.Constants.RestrictedConstants.UsingRestrictedConstant
WordPressVIPMinimum.Constants.ConstantString.NotCheckingConstantName	No change
WordPressVIPMinimum.Files.IncludingFile.IncludingFile	WordPressVIPMinimum.Files.IncludingFile.UsingVariableWordPressVIPMinimum.Files.IncludingFile.UsingCustomConstantWordPressVIPMinimum.Files.IncludingFile.UsingCustomFunctionWordPressVIPMinimum.Files.IncludingFile.NotAbsolutePathWordPressVIPMinimum.Files.IncludingFile.ExternalURLWordPressVIPMinimum.Files.IncludingFile.RestrictedConstant
WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingSVGCSSFile	WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingSVGCSSFile
WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingNonPHPFile	WordPressVIPMinimum.Files.IncludingNonPHPFile.IncludingNonPHPFile
WordPressVIPMinimum.Filters.AlwaysReturn.voidReturn	WordPressVIPMinimum.Hooks.AlwaysReturnInFilter.VoidReturn
WordPressVIPMinimum.Filters.AlwaysReturn.missingReturnStatement	WordPressVIPMinimum.Hooks.AlwaysReturnInFilter.MissingReturnStatement
WordPressVIPMinimum.Filters.RestrictedHook.UploadMimes	WordPressVIPMinimum.Hooks.RestrictedHooks.upload_mimes_upload_mimes
WordPressVIPMinimum.Filters.RestrictedHook.HighTimeout	WordPressVIPMinimum.Hooks.RestrictedHooks.http_request_http_request_argsWordPressVIPMinimum.Hooks.RestrictedHooks.http_request_http_request_timeout
WordPressVIPMinimum.Functions.CheckReturnValue.CheckReturnValue	WordPressVIPMinimum.Functions.CheckReturnValue.DirectFunctionCallWordPressVIPMinimum.Functions.CheckReturnValue.NonCheckedVariable
WordPressVIPMinimum.Functions.CreateFunction.CreateFunction	WordPressVIPMinimum.Functions.RestrictedFunctions.create_function_create_function
WordPressVIPMinimum.Functions.DynamicCalls.DynamicCalls	No change
WordPressVIPMinimum.Functions.StripTags.StripTagsOneParameter	No change
WordPressVIPMinimum.Functions.StripTags.StripTagsTwoParameters	No change
WordPressVIPMinimum.JS.DangerouslySetInnerHTML.dangerouslySetInnerHTML	WordPressVIPMinimum.JS.DangerouslySetInnerHTML.Found
WordPressVIPMinimum.JS.HTMLExecutingFunctions.html	No change
WordPressVIPMinimum.JS.HTMLExecutingFunctions.append	No change
WordPressVIPMinimum.JS.HTMLExecutingFunctions.write	No change
WordPressVIPMinimum.JS.HTMLExecutingFunctions.writeln	No change
WordPressVIPMinimum.JS.InnerHTML.innerHTML	WordPressVIPMinimum.JS.InnerHTML.Found
WordPressVIPMinimum.JS.StringConcat.StringConcatNext	WordPressVIPMinimum.JS.StringConcat.Found
WordPressVIPMinimum.JS.StrippingTags.VulnerableTagStripping	No change
WordPressVIPMinimum.JS.Window.VarAssignment	No change
WordPressVIPMinimum.JS.Window.location	No change
WordPressVIPMinimum.JS.Window.name	No change
WordPressVIPMinimum.JS.Window.status	No change
WordPressVIPMinimum.Plugins.Zoninator.Zoninator	WordPressVIPMinimum.Compatibility.Zoninator.RequiresRESTAPI
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.{{{	WordPressVIPMinimum.Security.Mustache.OutputNotation
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.{{&	WordPressVIPMinimum.Security.Mustache.VariableNotation
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.delimeterChange	WordPressVIPMinimum.Security.Mustache.DelimiterChange
WordPressVIPMinimum.TemplatingEngines.UnescapedOutputMustache.SafeString	WordPressVIPMinimum.Security.Mustache.SafeString

... (truncated)

Commits

• 8544a94 Change log: 1.0.0 (#406)
• 34189ef Change log: 1.0.0
• 97fa945 Merge pull request #405 from Automattic/feature/remove-wpcs-exclusion
• bb859c8 Remove a WordPress-Extra exclusion
• 7e5d952 Merge pull request #403 from Automattic/rebecca/add_silence_short_echo_vip_go...
• 65f3094 Add test for silencing short echo tag per #386
• 7b585e4 Merge pull request #402 from Automattic/rebecca/rework_vipmin_ruleset_tests
• 84eeeb2 Merge branch 'master' of https://github.com/Automattic/VIP-Coding-Standards i...
• ea94131 Expand on WordPress-VIP-Minimum ruleset integration tests to cover implicitly...
• ab5cd2e Merge pull request #400 from Automattic/rebecca/fix_vipgo_ruleset_tests
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)