Add phpstan-strict-rules and update README/CLAUDE.md

loevgaard · loevgaard · commit 68c4b9142ad8 · 2026-04-13T09:02:18.000+02:00
diff --git a/CLAUDE.md b/CLAUDE.md
@@ -7,9 +7,11 @@ This file provides guidance to Claude Code (claude.ai/code) when working with co
 This is a Composer meta-package (`setono/code-quality-pack`) that bundles PHP code quality tools into a single dev dependency. It contains no source code — only `composer.json` defining the bundled tools:
 
 - **ergebnis/composer-normalize** — composer.json normalization
+- **infection/infection** — mutation testing
+- **phpstan/phpstan** — static analysis
+- **phpstan/phpstan-strict-rules** — strict PHPStan rules
 - **rector/rector** — automated refactoring
 - **sylius-labs/coding-standard** — coding standards (PHP CodeSniffer based)
-- **vimeo/psalm** — static analysis
 
 ## Commands
 
@@ -29,10 +31,12 @@ composer normalize
 
 ## CI
 
-The GitHub Actions workflow (`.github/workflows/build.yaml`) runs on PHP 8.1–8.4 and validates `composer.json` (strict mode + normalization check). There are no tests to run.
+The GitHub Actions workflow (`.github/workflows/build.yaml`) runs on PHP 8.2–8.4 and validates `composer.json` (strict mode + normalization check). There are no tests to run.
+
+## Important Workflow
+
+When adding, removing, or changing dependencies in `composer.json`, always update `README.md` to reflect the current package list.
 
 ## Notes
 
-- `composer.lock` is committed to version control
 - The `dealerdirect/phpcodesniffer-composer-installer` plugin is explicitly disallowed in composer config
-- Psalm supports both v5 and v6 (`^5.26.1 || ^6.10.3`)
diff --git a/README.md b/README.md
@@ -9,9 +9,11 @@ composer require --dev setono/code-quality-pack
 
 * [ergebnis/composer-normalize](https://github.com/ergebnis/composer-normalize)
   * Normalizes your `composer.json`. This has a few advantages - easier diffs  being one of them.
+* [infection/infection](https://infection.github.io/)
+    * Mutation testing framework to measure the quality of your tests.
+* [phpstan/phpstan](https://phpstan.org/)
+    * A static analysis tool that finds bugs without running your code.
 * [rector/rector](https://getrector.org/documentation)
-  * Easily refactors and upgrades your code base.
+    * Easily refactors and upgrades your code base.
 * [sylius-labs/coding-standard](https://github.com/SyliusLabs/CodingStandard)
     * Sylius' coding standard. Very thorough.
-* [vimeo/psalm](https://psalm.dev/)
-    * A static analysis tool much like PHPStan, but a lot of people would argue it's better.
diff --git a/composer.json b/composer.json
@@ -8,6 +8,7 @@
         "ergebnis/composer-normalize": "^2.47",
         "infection/infection": "^0.29",
         "phpstan/phpstan": "^2.1",
+        "phpstan/phpstan-strict-rules": "^2.0",
         "rector/rector": "^2.0",
         "sylius-labs/coding-standard": "^4.4"
     },
