From 2527fa2e039ba7f96e755542c83e49120ad318dd Mon Sep 17 00:00:00 2001
From: domenico <domenico@translated.net>
Date: Mon, 1 Jun 2026 17:51:43 +0200
Subject: [PATCH] =?UTF-8?q?=F0=9F=93=9D=20docs:=20update=20CHANGELOG=20for?=
 =?UTF-8?q?=20release=203.3.0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
---
 CHANGELOG.md | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8228e6d..4cea9ba 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,33 @@
 # CHANGELOG
 
+## 3.3.0
+
+### Security
+
+- Hardened `ServiceProvider::markdown()` against XSS injection: input strings are now HTML-escaped before Markdown conversion, dangerous URL schemes (`javascript:`, `data:`, `vbscript:`) are blocked in links, and `rel="noopener noreferrer"` is added to all generated anchor tags.
+
+### Features
+
+- Full PHPStan level 8 compliance across the entire codebase (production and tests), including checked exception annotations (`@throws`).
+- Migrated CI from Travis CI to GitHub Actions with parallel PHP 8.3/8.4 matrix, SonarCloud integration, and code coverage reporting.
+
+### Fixes
+
+- Removed `ext-xdebug` from `composer.json` `require-dev` to fix CI failures on PHP 8.4 (xdebug is a runtime tool, not a dependency).
+- Fixed PHP 8.4 deprecation: explicit nullable type for implicitly nullable parameters.
+
+### CI/CD
+
+- Migrated from Travis CI to GitHub Actions.
+- Updated all GitHub Actions to latest Node.js 24-compatible versions (`checkout@v6`, `cache@v5`, `upload-artifact@v7`, `download-artifact@v8`, `sonarqube-scan-action@v8`).
+- Added SonarCloud analysis as a dedicated post-test job.
+
+### Refactoring
+
+- Added `@throws` PHPDoc annotations to all production and test methods for PHPStan checked exception compliance.
+- Replaced `assertTrue($x instanceof Y)` with `assertInstanceOf()` across all test files.
+- Added proper return types, parameter types, and PHPDoc type annotations to all test methods and helpers.
+
 ## 3.2.3
 
 ### Features