Skip to content

Bump SonarAnalyzer.CSharp from 8.45.0.54064 to 8.51.0.59060 #29

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Bump SonarAnalyzer.CSharp from 8.45.0.54064 to 8.51.0.59060 #29

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link

@dependabot dependabot bot commented on behalf of github Dec 22, 2022
edited
Loading

Bumps SonarAnalyzer.CSharp from 8.45.0.54064 to 8.51.0.59060.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

8.51

Hello everyone,

We are happy to announce that in this release we implemented Incremental PR analysis for C# and Vb.Net, a feature that can significantly reduce the analysis time when analyzing PRs.

Additionally, we fixed false positives and negatives introduced by the new C# 11 syntax and introduced a new rule #5693

Special thanks to our contributors @​Corniel for #5693 and @​Smenus for #6497.

New features

Incremental PR analysis (#6514, #6512, #6487, #6486, #6485, #6484, #6483)

New rules

  • 5693 - [C#, VB.NET] New rule S6444: RegEx evaluation should have a time out specified

Improvements

  • 6477 - Update RSPEC before 8.51 release and deprecate S4214

False Positive

  • 6497 - [C#] Fix S2699 FP: Support derivations of ExpectedExceptionBaseAttribute for MsTest
  • 6476 - [C#, VB.NET] Fix FNs/FPs: Add support for LibraryImportAttribute
  • 6429 - [C#] Fix S1067 FP: Conditionals in pattern should not be considered as a unit for the whole pattern

False Negative

  • 6517 - [C#] Fix S2674 FN: Add support for ConfigureAwait
  • 6481 - [C#] Fix S2674 FN: Add support for Stream.ReadAtLeast
  • 6441 - Fix S2302 FN: Issue is not raised when the name of one of the method parameters is a raw string literal
  • 6423 - [C#] Fix S1244 FN: Half, NFloat, and IFloatingPointIeee754 are not supported
  • 6399 - Fix S2201 FN: Support native ints
  • 6394 - Fix S2068 FN: Support utf-8 string literals
  • 6393 - Fix S1168 FN: Support mathematical operators in generic types
  • 6387 - Fix S3267 FN: Support list pattern
  • 6386 - Fix S3444 FN: Support static methods in interfaces
  • 6164 - Fix S4426 FN: On .Net 7 when using ECDsaOpenSsl

8.50

Hi everyone,

This release brings you the second fragment of C# 11 support in our Sonarway rules. It fixes false negatives that were caused by the new C# 11 syntax. Look out for new releases as soon we will start adding C# 11 support to our non-sonarway rules.

Special thanks to @​Corniel for implementing a new VB.NET rule, and also for adding a new codefix provider.

New Rules

  • 6459 - [VB.NET] Implement S1123 - Obsolete attributes need explanation - for VB.NET
  • 6043 - [C#] Add code fix for S3353: Unchanged local variables should be const

Improvements

  • 6404 - Update RSPEC before 8.50 release
  • 5274 - Target JDK 11 in Java plugins

False Negative

  • 6434 - Fix S3433 FN: Support derived attributes

... (truncated)

Commits
  • e14c642 Fix ProjectOutFolderPath processing (#6573)
  • 5736bd3 Fix S1067 FN: binary expressions should be treated as transparent (#6565)
  • 969db6c S1067 FN: Add condition of conditional ternary operator to list of visited ch...
  • a2484e4 Update rspec before 8.51 release and deprecate S4214 (#6556)
  • f6a6857 Incremental PR analysis: Cache the hash only for CSharp and VbNet files (#6551)
  • 383fc59 Incremental PR Analysis: Add Java ITs that assert duplication reporting (#6537)
  • 2227150 S2699 Reproducer for AssertionMethodAttribute is ignored when assertion metho...
  • e27457c Update coding-style for arrow position on method/property (#6504)
  • 04c986c RegEx evaluation should have a time out specified (#5693)
  • db3b159 Bump protobuf-java from 3.21.10 to 3.21.12 (#6539)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot dependabot bot requested review from a team and 55Neilton December 22, 2022 13:16
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Dec 22, 2022
@dependabot dependabot bot mentioned this pull request Dec 22, 2022
Closed
@dependabot dependabot bot requested a review from lucasteles December 22, 2022 13:16
@dependabot
Bump SonarAnalyzer.CSharp from 8.45.0.54064 to 8.51.0.59060
9f55e58 
Bumps [SonarAnalyzer.CSharp](https://github.com/SonarSource/sonar-dotnet) from 8.45.0.54064 to 8.51.0.59060.
- [Release notes](https://github.com/SonarSource/sonar-dotnet/releases)
- [Commits](SonarSource/sonar-dotnet@8.45.0.54064...8.51.0.59060)

---
updated-dependencies:
- dependency-name: SonarAnalyzer.CSharp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot force-pushed the dependabot/nuget/SonarAnalyzer.CSharp-8.51.0.59060 branch from fadb31f to 9f55e58 Compare December 23, 2022 23:11
@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Dec 23, 2022

Dependabot tried to update this pull request, but something went wrong. We're looking into it, but in the meantime you can retry the update by commenting @dependabot rebase.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@55Neilton 55Neilton Awaiting requested review from 55Neilton

@lucasteles lucasteles Awaiting requested review from lucasteles

Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants