I guess this did not happen? 🙈

Actually, shouldn't we trigger a deprecation here, if an argument is passed? This is according to the original plan: #20603 (comment)

Sorry, I see it's already done in 4.4: #31658

This change seems dangerous actually. Consider this scenario:

• App was using Symfony < 3.2 (where the change was originally introduced: [HttpKernel] Deprecate checking for cacheable HTTP methods in Request::isMethodSafe() #20603)
• App contains $request->isMethodSafe() calls which expect the old behaviour (i.e. $andCacheable = true)
• Developer upgrades app to Symfony 4.3 (kind of a giant leap, but still plausible)
• The calls would return the wrong value silently after this PR

Safer alternative: In API Platform (and other bundles which need to support both Symfony 4.3 and Symfony 4.4 without triggering a deprecation), I think we should do version detection and make the call accordingly.

This upgrade path is not supported - one must go through 3.4 and fix deprecations. We don't support another path.

I'm trying to understand the rationale behind the double deprecation strategy, i.e.:

1. Deprecate not passing the $andCacheable argument with false value in 3.2.
2. Throwing an error when not passing the $andCacheable argument with false value in 4.0.
3. Deprecate passing the $andCacheable argument in 4.14.4.

It seems to me like it's meant to prevent having unexpected behaviour when the deprecation is not caught during the upgrade process (and this can and does happen - it's impossible to catch all deprecations). And this PR seems to break the safety net afforded by this strategy.

But then again I might be overthinking this, and the double deprecation might just be out of necessity.

The reasoning is that the deprecation is triggered in 3.4. So we can assume in 4.x that it's been taken into account.