build(deps): update phpmailer/phpmailer requirement from ^6.0 to ^7.0

[dependabot]

Updates the requirements on phpmailer/phpmailer to permit the latest version.

Release notes

Sourced from phpmailer/phpmailer's releases.

PHPMailer 7.0.0

This is exactly the same as version 6.11.1 but bumps the major version number to indicate the presence of a BC break in child classes. The changes in 6.11.0 and 6.11.1 have been reverted in 6.12.0. If you have code that depends on those changes, please upgrade to 7.0.0 instead. Apologies for the mix up.

Specifically, lang(), setLanguage(), and $language are now static, and should be called statically.

Changelog

Sourced from phpmailer/phpmailer's changelog.

Version 7.0.0 (October 15th, 2025)

This is exactly the same as 6.11.1 but bumps the major version number to indicate the presence of a BC break in child classes. Specifically, lang(), setLanguage(), and $language are now static, and should be called statically.

Version 6.12.0 (October 15th, 2025)

This is exactly the same as 6.10.0, reverting all the changes in 6.11.0 and 6.11.1, which inadvertently introduced a BC break affecting child classes. 6.11.1 has been re-released as 7.0.0.

Version 6.11.1 (September 30th, 2025)

• Avoid function signature problems with the deprecation of $useimap in parseAddresses.

Version 6.11.0 (September 29th, 2025)

• Add support for RFC4954 two-part authentication for large XOAUTH2 tokens.
• Also support empty tokens.
• Avoid bogus static analyser deprecation warnings in setFrom.
• Make language loading entirely static, thanks to @​SirLouen.
• Emit warnings when parseAddresses() is used without the IMAP extension.
• Handle mb_decode_mimeheader changes from PHP 8.3+.
• Deprecate the charset param to parseAddresses.
• Fix PHP 8.5 linting issue.
• Don't use -t switch when calling qmail.
• Checking for interrupted system calls now works in languages other than English.
• Add support for extracting gmail transaction IDs after sending.
• For consistency, the protected ReplyTo property has been changed to match the format used for other address arrays.
• Fix line length issues when using S/MIME signing.
• Pin action runners to exact versions to avoid unexpected upstream changes.

Version 6.10.0 (April 24th, 2025)

• Add support for RFC 6530 SMTPUTF8, permitting use of UTF-8 Unicode characters everywhere, thanks to @​arnt and ICANN. See SMTPUTF8.md for details.
• More reliable checking for multibyte support.

Version 6.9.3 (November 22nd, 2024)

• Add support for the release version of PHP 8.4
• Add experimental support for PHP 8.5
• Use rfc-editor.org for all RFC docs links

Version 6.9.2 (October 9th, 2024)

• Escape dots in SMTP transaction ID patterns
• Add link to aboutmy.email testing service in docs
• Add a more comprehensive example for using XOAUTH2 with gmail and Azure, thanks to @​decomplexity
• Update Turkish, Spanish, Japanese, Russian, French translations
• Add Urdu & Kurdish (Sorani) translations
• Fix broken links in docs and comments, avoid http links, correct link to LGPL 2.1 license file
• Cleaner PSR-3 SMTP debug logging
• Bump GitHub action versions
• Fix error handler scope issue in POP3 and SMTP classes
• Numerous test improvements by @​jrfnl

Version 6.9.1 (November 25th, 2023)

• Finalise SendOauth2 example

Version 6.9.0 (November 23rd, 2023)

... (truncated)

Commits

• c711131 7.0.0
• d9e3b36 6.11.1
• fe380a8 Merge pull request #3240 from SirLouen/patch/3201v2
• 29f48d4 Regressing deprecatedArg
• 6ed58a9 Merge pull request #3238 from PHPMailer/dependabot/github_actions/action-runn...
• 9500c37 Version and changelog
• 39a1bc9 Merge pull request #3237 from SirLouen/patch/3234
• 22a8dce Merge pull request #3202 from SirLouen/patch/3201
• 9b899a0 GH Actions: Bump github/codeql-action in the action-runners group
• 8e8b503 Doing some cleaning up
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)