Updates includes frankenphp (sync with php84 repo)

.github/dependabot.yml

@@ -7,6 +7,7 @@ updates:
     directories:
       - fpm
       - apache
+      - frankenphp
     schedule:
       interval: "daily"
     ignore:
@@ -20,3 +21,7 @@ updates:
     directory: "/"
     schedule:
       interval: "daily"
+    groups:
+      specsnl-github-actions:
+        patterns:
+          - "specsnl/github-actions"

.github/prompts/update-project.prompt.md

@@ -0,0 +1,211 @@
+---
+description: Safely update this project's Dockerfile dependencies and tooling in isolated commits
+name: update-project
+---
+
+# Goal
+
+Perform a full dependency update across all three Dockerfile variants (fpm, apache, frankenphp) in a safe,
+reproducible way.
+
+**Critical rule:** Any version that appears in more than one Dockerfile must be updated across all affected
+Dockerfiles in a single commit. Never update a shared version in only one Dockerfile.
+
+If any step fails, STOP immediately and report the error.
+
+## Phase 1 --- Repository Safety Checks
+
+1. Verify the current branch is `main`. If not, abort and instruct the user to switch to `main` first.
+2. Ensure the working (git) tree is clean:
+    - No staged changes
+    - No unstaged changes
+    - No untracked files
+    - If not clean: Abort immediately — inform the user to commit or stash changes.
+3. Synchronize with remote: `git fetch --prune`
+4. Prepare branch `updates`:
+    - If branch does not exist → create from `origin/main`
+    - If branch exists:
+        - If fully merged into `main` → delete locally and recreate from `origin/main`.
+        - If behind `main` and has NO unique commits → reset `updates` to `origin/main`.
+        - If it contains unique commits → abort and notify user.
+5. Check if the branch does not already exist on the remote. If it does, abort and inform the user to delete
+the remote branch first.
+
+Always branch from latest `origin/main`.
+
+## Phase 2 --- PHP Base Image Updates
+
+The three Dockerfiles use different base images but all track the same PHP 8.3.x patch series:
+
+- `fpm/Dockerfile`: `FROM php:<version>-fpm-trixie`
+- `apache/Dockerfile`: `FROM php:<version>-apache-trixie`
+- `frankenphp/Dockerfile`: `FROM dunglas/frankenphp:<frankenphp-version>-php<php-version>-trixie`
+
+1. Check Docker Hub for the latest `php:8.3.x-fpm-trixie` tag. Only consider patch updates within the
+`8.3.x` series — do not update to a different minor or major PHP version.
+2. Check Docker Hub for the latest `dunglas/frankenphp` tag that matches the pattern
+`x.x.x-php8.3.x-trixie`. Only consider updates that keep the PHP 8.3.x series.
+3. Update the `FROM` lines in all three Dockerfiles if newer versions are available.
+4. Check `git status`. Commit all three Dockerfiles together in a single commit if there are any changes.
+   Commit message: `chore(deps): Update PHP base image versions`.
+5. If there are no changes, skip the commit and move on.
+
+Abort on any failure.
+
+## Phase 3 --- Pie Tool Update
+
+All three Dockerfiles pin the same Pie version via:
+
+```
+COPY --from=ghcr.io/php/pie:<version>-bin /pie /usr/bin/pie
+```
+
+1. Check the GitHub Releases API for the latest release of `php/pie`.
+2. If a newer version is available, update the `ghcr.io/php/pie:<version>-bin` reference in all three
+Dockerfiles.
+3. Check `git status`. Commit all three Dockerfiles together in a single commit if there are any changes.
+   Commit message: `chore(deps): Update Pie version`.
+4. If there are no changes, skip the commit and move on.
+
+Abort on any failure.
+
+## Phase 4 --- PHP Runtime Extension Updates
+
+All three Dockerfiles share the same versions for the following PHP extensions (runtime stage ARGs):
+
+- `PHP_EVENT_VERSION` — `osmanov/pecl-event` on Packagist
+- `PHP_IGBINARY_VERSION` — `igbinary/igbinary` on Packagist
+- `PHP_REDIS_VERSION` — `phpredis/phpredis` on Packagist
+- `PHP_AMQP_VERSION` — `php-amqp/php-amqp` on Packagist
+
+Process each extension individually and in order:
+
+1. Query the Packagist API for the latest stable release of the extension.
+2. If a newer version is available, update the corresponding `ARG` in all three Dockerfiles.
+3. Commit all three Dockerfiles together in a single commit.
+   Commit message: `chore(deps): Update <package-name> to <new-version>`.
+   For example: `chore(deps): Update phpredis/phpredis to 6.4.0`.
+4. If there is no update for this extension, skip the commit and move on to the next extension.
+
+Repeat for every extension. Each updated extension gets its own commit.
+
+Abort on any failure.
+
+## Phase 5 --- Builder Stage Tool Updates
+
+All three Dockerfiles share the same versions for the following builder-stage tools:
+
+- `PHIVE_VERSION` — check the GitHub Releases API for `phar-io/phive`
+- `COMPOSER_VERSION` — check `https://getcomposer.org/download/` or the GitHub Releases API for
+`composer/composer`
+- `XDEBUG_VERSION` — `xdebug/xdebug` on Packagist
+- `PCOV_VERSION` — `pecl/pcov` on Packagist
+
+Process each tool individually and in order:
+
+1. Look up the latest stable release of the tool.
+2. If a newer version is available, update the corresponding `ARG` in all three Dockerfiles.
+3. Commit all three Dockerfiles together in a single commit.
+   Commit message: `chore(deps): Update <tool-name> to <new-version>`.
+   For example: `chore(deps): Update Composer to 2.10.0`.
+4. If there is no update for this tool, skip the commit and move on to the next tool.
+
+Repeat for every tool. Each updated tool gets its own commit.
+
+Abort on any failure.
+
+## Phase 6 --- Node.js Major Version Update
+
+All three Dockerfiles pin `ARG NODE_MAJOR=<version>` for the `builder_nodejs` stage.
+
+1. Check the Node.js release schedule at `https://nodejs.org/en/about/previous-releases` to find the
+current Active LTS major version.
+2. Only update `NODE_MAJOR` if a newer **Active LTS** major version is available. Do not update to a
+Current (non-LTS) release.
+3. If a newer Active LTS major is available, update `NODE_MAJOR` in all three Dockerfiles.
+4. Check `git status`. Commit all three Dockerfiles together in a single commit if there are any changes.
+   Commit message: `chore(deps): Update Node.js major version to <version>`.
+5. If there are no changes, skip the commit and move on.
+
+Abort on any failure.
+
+## Phase 7 --- Hadolint Version Update
+
+The `Taskfile.dist.yml` pins the Hadolint Docker image version via the `HADOLINT_TAG_VERSION` variable.
+
+1. Check the GitHub Releases API for the latest release of `hadolint/hadolint`.
+2. If a newer version is available, update `HADOLINT_TAG_VERSION` in `Taskfile.dist.yml`.
+3. Check `git status`. Commit if there are any changes.
+   Commit message: `chore(deps): Update Hadolint version`.
+4. If there are no changes, skip the commit and move on.
+
+Abort on any failure.
+
+## Phase 8 --- GitHub Actions Updates
+
+1. Scan the following files for pinned `uses:` action references:
+    - `.github/workflows/*.yml`
+2. For each external action (e.g. `specsnl/github-actions/.github/workflows/build-php.yml@1.1.1`), use
+the GitHub Releases API to find the latest release tag. Check every action individually — do not assume
+a version is already current.
+   - If the reference uses a floating major-version tag (e.g. `@v6`) and that major version is already
+     the latest, leave it as-is.
+   - If the reference is pinned to a specific semver tag (e.g. `@1.1.1`, `@v2.5.0`) and a newer version
+     exists, update it to the latest release tag.
+   - If the reference is pinned to a commit SHA, leave it as-is.
+3. Update any outdated action versions in-place across all scanned files.
+4. Check `git status`. Commit separately if there are any changes.
+   Commit message: `chore(deps): Update GitHub Actions versions`.
+5. If there are no changes, skip the commit and move on.
+
+Abort on any failure.
+
+## Phase 9 --- License Year Update
+
+1. Check if the `LICENSE` file contains a year range (e.g. `2020-2025`) or a single year (e.g. `2024`).
+2. If the current year (2026) is not already the end year:
+   - Single year (e.g. `2024`) → update to `2026`.
+   - Year range (e.g. `2020-2025`) → update the end year to `2026`.
+3. Commit separately if there are any changes.
+   Commit message: `chore: Update copyright year`.
+4. If there are no changes, skip the commit and move on.
+
+------------------------------------------------------------------------
+
+## Final State
+
+Abort if there are no changes after all update steps, and inform the user that everything is already up
+to date.
+
+- There could be up to 14 commits on the `updates` branch:
+    1. PHP base image versions
+    2. Pie tool version
+    3. PHP runtime extension: osmanov/pecl-event
+    4. PHP runtime extension: igbinary/igbinary
+    5. PHP runtime extension: phpredis/phpredis
+    6. PHP runtime extension: php-amqp/php-amqp
+    7. Builder tool: Phive
+    8. Builder tool: Composer
+    9. Builder tool: Xdebug
+    10. Builder tool: pcov
+    11. Node.js major version
+    12. Hadolint version
+    13. GitHub Actions versions
+    14. Copyright year
+- Branch: `updates`
+- Based on latest `origin/main`.
+- The working tree should be clean.
+- Push the branch to the remote and create a pull request for review and merging targeting `origin/main`.
+  The title should be `chore: Update dependencies`.
+- Add a Pull Request description that lists the changes based on the commits that were made. Stick to the
+  commit messages but remove the "chore" prefix. For example:
+
+```md
+Updated the following dependencies:
+
+- Updated PHP base image versions
+- Updated Pie version
+- Updated PHP runtime extension versions
+- Updated builder stage tool versions
+- Updated GitHub Actions versions
+```

.github/workflows/main.yml

@@ -15,7 +15,7 @@ concurrency:
 
 jobs:
   build:
-    uses: Ilyes512/github-actions/.github/workflows/build-php.yml@1.0.12
+    uses: specsnl/github-actions/.github/workflows/build-php.yml@1.1.1
     strategy:
       fail-fast: false
       matrix:
@@ -29,20 +29,23 @@ jobs:
             image-name: ghcr.io/${{ github.repository }}
           - dockerfile: apache/Dockerfile
             image-name: ghcr.io/${{ github.repository }}/apache
+          - dockerfile: frankenphp/Dockerfile
+            image-name: ghcr.io/${{ github.repository }}/frankenphp
     with:
       runs-on: ${{ matrix.runs-on.os }}
       platform: ${{ matrix.runs-on.platform }}
       image-name: ${{ matrix.docker.image-name }}
       dockerfile: ${{ matrix.docker.dockerfile }}
 
   merge:
-    uses: Ilyes512/github-actions/.github/workflows/merge-php.yml@1.0.12
+    uses: specsnl/github-actions/.github/workflows/merge-php.yml@1.1.1
     needs: build
     strategy:
       matrix:
         image-name:
           - ghcr.io/${{ github.repository }}
           - ghcr.io/${{ github.repository }}/apache
+          - ghcr.io/${{ github.repository }}/frankenphp
     with:
       runs-on: ubuntu-24.04
       image-name: ${{ matrix.image-name }}

.github/workflows/pr.yml

@@ -14,7 +14,7 @@ concurrency:
 
 jobs:
   build:
-    uses: Ilyes512/github-actions/.github/workflows/build-php.yml@1.0.12
+    uses: specsnl/github-actions/.github/workflows/build-php.yml@1.1.1
     strategy:
       fail-fast: false
       matrix:
@@ -28,20 +28,23 @@ jobs:
             image-name: ghcr.io/${{ github.repository }}
           - dockerfile: apache/Dockerfile
             image-name: ghcr.io/${{ github.repository }}/apache
+          - dockerfile: frankenphp/Dockerfile
+            image-name: ghcr.io/${{ github.repository }}/frankenphp
     with:
       runs-on: ${{ matrix.runs-on.os }}
       platform: ${{ matrix.runs-on.platform }}
       image-name: ${{ matrix.docker.image-name }}
       dockerfile: ${{ matrix.docker.dockerfile }}
 
   merge:
-    uses: Ilyes512/github-actions/.github/workflows/merge-php.yml@1.0.12
+    uses: specsnl/github-actions/.github/workflows/merge-php.yml@1.1.1
     needs: build
     strategy:
       matrix:
         image-name:
           - ghcr.io/${{ github.repository }}
           - ghcr.io/${{ github.repository }}/apache
+          - ghcr.io/${{ github.repository }}/frankenphp
     with:
       runs-on: ubuntu-24.04
       image-name: ${{ matrix.image-name }}

.github/workflows/tag.yml

@@ -15,7 +15,7 @@ concurrency:
 
 jobs:
   build:
-    uses: Ilyes512/github-actions/.github/workflows/build-php.yml@1.0.12
+    uses: specsnl/github-actions/.github/workflows/build-php.yml@1.1.1
     strategy:
       fail-fast: false
       matrix:
@@ -29,20 +29,23 @@ jobs:
             image-name: ghcr.io/${{ github.repository }}
           - dockerfile: apache/Dockerfile
             image-name: ghcr.io/${{ github.repository }}/apache
+          - dockerfile: frankenphp/Dockerfile
+            image-name: ghcr.io/${{ github.repository }}/frankenphp
     with:
       runs-on: ${{ matrix.runs-on.os }}
       platform: ${{ matrix.runs-on.platform }}
       image-name: ${{ matrix.docker.image-name }}
       dockerfile: ${{ matrix.docker.dockerfile }}
 
   merge:
-    uses: Ilyes512/github-actions/.github/workflows/merge-php.yml@1.0.12
+    uses: specsnl/github-actions/.github/workflows/merge-php.yml@1.1.1
     needs: build
     strategy:
       matrix:
         image-name:
           - ghcr.io/${{ github.repository }}
           - ghcr.io/${{ github.repository }}/apache
+          - ghcr.io/${{ github.repository }}/frankenphp
     with:
       runs-on: ubuntu-24.04
       image-name: ${{ matrix.image-name }}

LICENSE

@@ -1,6 +1,6 @@
 MIT License
 
-Copyright (c) 2025 Ilyes Ahidar
+Copyright (c) 2026 Ilyes Ahidar
 
 Permission is hereby granted, free of charge, to any person obtaining a copy
 of this software and associated documentation files (the "Software"), to deal

README.md

@@ -2,7 +2,7 @@
 
 [![Build Images](https://github.com/Ilyes512/php83/actions/workflows/main.yml/badge.svg)](https://github.com/Ilyes512/php83/actions/workflows/main.yml)
 
-A PHP 8.3 (FPM and Apache) based Docker base image.
+A PHP 8.3 (FPM, Apache and FrankenPHP) based Docker base image.
 
 ## Pulling the images
 
@@ -14,6 +14,10 @@ docker pull ghcr.io/ilyes512/php83:builder_nodejs-latest
 docker pull ghcr.io/ilyes512/php83/apache:runtime-latest
 docker pull ghcr.io/ilyes512/php83/apache:builder-latest
 docker pull ghcr.io/ilyes512/php83/apache:builder_nodejs-latest
+
+docker pull ghcr.io/ilyes512/php83/frankenphp:runtime-latest
+docker pull ghcr.io/ilyes512/php83/frankenphp:builder-latest
+docker pull ghcr.io/ilyes512/php83/frankenphp:builder_nodejs-latest
 ```
 
 The tag scheme: `{TARGET}-{VERSION}`
@@ -52,11 +56,14 @@ docker build --tag ghcr.io/ilyes512/php83:builder_nodejs-latest --file fpm/Docke
 Available [Task](https://taskfile.dev/#/) commands:
 
 ```
-* build:              Build all PHP Docker image targets of both the FPM and Apache variants
+* build:              Build all PHP Docker image targets of the FPM, Apache and FrankenPHP variants
 * build:apache:       Build all PHP Docker image targets of the Apache variant
 * build:fpm:          Build all PHP Docker image targets of the FPM variant
+* build:frankenphp:   Build all PHP Docker image targets of the FrankenPHP variant
 * lint:apache:        Apply a Dockerfile linter (https://github.com/hadolint/hadolint)
 * lint:fpm:           Apply a Dockerfile linter (https://github.com/hadolint/hadolint)
+* lint:frankenphp:    Apply a Dockerfile linter (https://github.com/hadolint/hadolint)
 * shell:apache:       Interactive shell
 * shell:fpm:          Interactive shell
+* shell:frankenphp:   Interactive shell
 ```