Bump Microsoft.CodeAnalysis.Analyzers from 3.0.0 to 3.3.4

[dependabot]

Bumps Microsoft.CodeAnalysis.Analyzers from 3.0.0 to 3.3.4.

Release notes

Sourced from Microsoft.CodeAnalysis.Analyzers's releases.

v3.3.4

Release build of Roslyn-analyzers based on Microsoft.CodeAnalysis 3.3.1 NuGet packages. Works with VS 2019 16.9 or later.

• Contains important functionality and performance bug fixes on top of v3.3.3 release

v3.3.3

Release build of Roslyn-analyzers based on Microsoft.CodeAnalysis 3.3.0 NuGet packages. Works with VS 2019 16.9 or later.

• Contains important functionality and performance bug fixes on top of v3.3.2 release

v3.3.2

Release build of Roslyn-analyzers based on Microsoft.CodeAnalysis 3.3.0 NuGet packages. Works with VS 2019 16.3 or later.

• Contains important functionality and performance bug fixes on top of v3.3.1 release
• New deprecation warning CA9998 for Microsoft.CodeAnalysis.FxCopAnalyzers package: FxCopAnalyzers package has been deprecated in favor of 'Microsoft.CodeAnalysis.NetAnalyzers', that ships with the .NET SDK. Please refer to https://docs.microsoft.com/visualstudio/code-quality/migrate-from-fxcop-analyzers-to-net-analyzers to migrate to .NET analyzers.

v3.3.1

Release build of Roslyn-analyzers based on Microsoft.CodeAnalysis 3.3.0 NuGet packages. Works with VS 2019 16.3 or later.

Contains following important changes on top of v3.3.0 release:

Bug Fixes

• Functionality and performance bug fixes
• Tainted data rules improvements
• CA5377: Don't warn when unable to get the control flow graph for dataflow analysis
• CA3075: Fix false positive on XmlReader.Create(string) invocations
• Optimizing error list refresh times for full compilation analyzers in Visual Studio 2019 16.9

Additional analyzers/fixers

Added

• Globalization
  • CA1310: Specify StringComparison for correctness -- Enabled by default
• Interoperability
  • CA1416: Validate platform compatibility -- Enabled by default

Changed

• Globalization
  • CA1307: Specify StringComparison for clarity -- Now disabled by default

v3.3.0

Release build of Roslyn-analyzers based on Microsoft.CodeAnalysis 3.3.0 NuGet packages. Works with VS 2019 16.3 or later.

Contains following important changes on top of v3.0.0 release

The new security rules CA2350-CA2362 can help find vulnerabilities related to DataSet and DataTable security guidance.

Feature

Editorconfig based file/directory level options configuration. See details here

... (truncated)

Commits

• 22ea642 Merge pull request #6436 from ViktorHofer/patch-1
• 9018071 Fix buildtransitive vs buildTransitive difference
• afa5665 [main] Update dependencies from dotnet/arcade (#6423)
• afee469 Merge pull request #6427 from mavasani/CodeAnalysisTreatWarningsAsErrors_Glob...
• b858999 Merge pull request #6430 from dotnet/locfiles/be3abf9f-1f22-469b-b26d-7648587...
• 0cbc3c5 Localized file check-in by OneLocBuild Task: Build definition ID 830: Build I...
• 113dadc Merge pull request #6429 from dotnet/revert-6364-net7-tests
• 356147f Revert "Move tests to target .NET 7"
• 1d7244a Update documentation for CodeAnalysisTreatWarningsAsErrors implementation
• 6c028d3 Re-implement CodeAnalysisTreatWarningsAsErrors with globalconfig files
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)