chore: PHP 8.4 preparation

[signor-pedro]

Description: Prepare BrandEmbassy/Elastica for PHP 8.4 compatibility
Possible impact: CI pipeline, PHP version compatibility

---

Summary

• Test commit to verify which CI pipelines are triggered on PRs
• Will be updated with actual PHP 8.2/8.3/8.4 CI matrix changes

🤖 Generated with Claude Code

Summary by CodeRabbit

Release Notes

• Documentation

  • Updated README to reflect PHP 8.4 preparation.

• Chores

  • Added automated security scanning workflow.
  • Updated package metadata.

[signor-pedro]

Opened against wrong repo by mistake, closing.

[coderabbitai]

Caution

Review failed

The pull request is closed.

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: 7fd5b7b7-f9cb-4fa5-94d3-74f55a80b738

📥 Commits

Reviewing files that changed from the base of the PR and between bc9eeaf and 08b0f78.

📒 Files selected for processing (3)

• .github/workflows/blackduck.yaml
• README.md
• composer.json

---

📝 Walkthrough

Walkthrough

This PR adds a BlackDuck security scanning workflow triggered monthly and on pushes to the master branch, updates the README title to reference PHP 8.4 preparation, and changes the Composer package identifier from ruflin/elastica to brandembassy/elastica.

Changes

Cohort / File(s)	Summary
CI/CD Configuration .github/workflows/blackduck.yaml	New GitHub Actions workflow configured to run Synopsys Detect scans on master branch pushes and monthly schedule, with BlackDuck integration and environment variables for scanning configuration.
Documentation README.md	Updated heading title to append "- PHP 8.4 preparation" with corresponding underline adjustment.
Package Configuration composer.json	Changed package name field from ruflin/elastica to brandembassy/elastica.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~8 minutes

Poem

🐰 A scan for security, BlackDuck on the case,
PHP 8.4 preparation takes its place,
BrandEmbassy elastica now claims its name,
With monthly checks guarding the codebase flame! ✨

Important

Merge conflicts detected (Beta)

• Resolve merge conflict in branch php-84-preparation

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests

📝 Coding Plan

• Generate coding plan for human review comments

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

Tip

CodeRabbit can use your project's `phpmd` ruleset to improve the quality of PHP code reviews.

You can customize the ruleset in your CodeRabbit configuration, or provide a path to a custom ruleset file.

[Copilot]

Pull request overview

This PR appears to be a “trigger test”/prep PR, but it currently introduces repo/package identity changes (Composer package name + README title) and adds a new scheduled Black Duck scanning workflow.

Changes:

• Renames the Composer package from ruflin/elastica to brandembassy/elastica.
• Updates the README title to mention “PHP 8.4 preparation”.
• Adds a GitHub Actions workflow to run Synopsys Black Duck scans on master pushes and on a monthly schedule.

Reviewed changes

Copilot reviewed 3 out of 3 changed files in this pull request and generated 4 comments.

File	Description
composer.json	Changes the published Composer package name (potentially breaking for consumers).
README.md	Updates the project title; other content still references ruflin/Elastica.
.github/workflows/blackduck.yaml	Introduces a new Black Duck scan workflow (push/scheduled triggers).

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Changing the Composer package name from "ruflin/elastica" to "brandembassy/elastica" is a breaking change for downstream consumers (install/upgrade paths, Packagist metadata, and any references in docs/CI). If this repo is intended to remain a fork, consider keeping the original package name (or clearly documenting the new install name and ensuring the old name is not referenced elsewhere).

Suggested change

	"name": "brandembassy/elastica",
	"name": "ruflin/elastica",

[Copilot]

The README title now claims "PHP 8.4 preparation", but the document (badges/links and the compatibility table) still points to ruflin/Elastica and indicates PHP ^7.0 support. This is misleading; either update the related links/compatibility info to match the new package/repo direction or remove the PHP 8.4 note until the actual compatibility work lands.

[Copilot]

The PR description mentions verifying which CI pipelines are triggered on PRs, but this workflow only runs on push to master and on a schedule. If you need PR validation/trigger testing, add a pull_request and/or workflow_dispatch trigger (keeping secrets usage in mind for PR runs).

[Copilot]

actions/checkout@v2 is quite old and may hit GitHub Actions runtime deprecations (Node runtime updates) sooner than newer major versions. Consider upgrading to actions/checkout@v4 to reduce the chance of workflow breakage and to stay aligned with current GitHub-recommended versions.

Suggested change

	- uses: actions/checkout@v2
	- uses: actions/checkout@v4