build(deps-dev): bump carthage-software/mago from 1.1.0 to 1.2.2

[dependabot]

Bumps carthage-software/mago from 1.1.0 to 1.2.2.

Release notes

Sourced from carthage-software/mago's releases.

Mago 1.2.2

Patch release to fix binary builds broken by upstream dependency.

🐛 Bug Fixes

• Fix PGO build command syntax: Update cargo pgo optimize command to match new CLI syntax required by cargo-pgo v0.2.10 (Kobzol/cargo-pgo#80)

📝 Notes

The 1.2.1 release binaries failed to build due to a breaking change in cargo-pgo v0.2.10 (released January 24, 2026) which changed how arguments are passed to the optimize command. This release contains no code changes-only a CI workflow fix.

Full Changelog: carthage-software/mago@1.2.1...1.2.2

Mago 1.2.1

🙈 Oops

Turns out releasing at 4 AM after a break isn't the best idea. Sorry about that!

🐛 Bug Fix

• Static method closure types: Fixed incorrect return type inference for first-class callables on inherited static methods (e.g., Y::create(...) now correctly returns Y instead of the parent class X)

---

Full Changelog: carthage-software/mago@1.2.0...1.2.1

Mago 1.2.0

First of all, I want to apologize for the delayed release — I've been on a break the past couple of weeks. Thank you all for your patience! 🙏

This release brings significant improvements to the analyzer, including unused code detection, better type inference, and numerous bug fixes addressing false positives reported by the community.

✨ Features

Analyzer

• Unused code detection: Mago now detects unused private methods and properties (#867, #929)
• Write-only property detection: Detect private properties that are written to but never read
• Undefined type reference errors: Report errors when referencing classes, interfaces, enums, or type aliases that don't exist (#891)
• Symbol namespace tracking: Keep track of symbol namespaces for improved import validation

Linter

• no-isset rule: New rule to prevent usage of the isset construct (#924) by @​djschilling
• Redundant import detection: Detect redundant same-namespace and root-namespace imports in no-redundant-use rule (#921)
• Auto-fixers for lowercase-type-hint and lowercase-keyword: New fixers for these linter rules (#911) by @​dotdash

Configuration

• Distribution config files: Add support for loading mago.dist.toml and mago.dist.json files (#903) by @​Bleksak

... (truncated)

Commits

• 9e6e3c6 chore: release 1.2.2
• c23685f fix(cd): correct pgo command syntax
• 4b18105 chore: release 1.2.1
• bc95538 fix(analyzer): use called class name instead of declaring class for static me...
• 11293f7 chore: release 1.2.0
• d7409e9 fix(analyzer): track symbol references from partial applications
• b17307e feat(analyzer): report errors for undefined type references in function param...
• 46bd41a fix(prelude): specify IteratorAggregate type parameters for DatePeriod
• 8265ebb fix(analyzer): allow imports of symbol namespaces
• 2523455 feat(codex): keep track of symbol namespaces
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[coderabbitai]

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

• 🔍 Trigger a full review

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}