Skip to content

Bump SonarAnalyzer.CSharp from 8.25.0.33663 to 9.2.0.71021 in /singletonclient #2378

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dependabot wants to merge 1 commit into from
Closed

Bump SonarAnalyzer.CSharp from 8.25.0.33663 to 9.2.0.71021 in /singletonclient #2378

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jun 5, 2023

Bumps SonarAnalyzer.CSharp from 8.25.0.33663 to 9.2.0.71021.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

9.2

This release brings a new implementation of S3949 rule, that is now part of SonarWay again.

New features

  • 7147 - [VB.NET] New rule S3949: Integral operations should not overflow - for VB.NET
  • 7239 - [C#] Rule S6613: implement CodeFix

False Positive fixes

  • 7104 - [C#] Fix S2259 FP: Conditional access checked for bool
  • 3491 - [C#] Fix S3949 FP: Do not report inside GetHashCode

Improvements

  • 4631 - [C#] Migrate S3949 to the new Symbolic Execution engine
  • 7148 - [C#] S3949: Add rule to SonarWay profile
  • 7138 - [C#] Remove CBDE dependency
  • 7212 - [C#] Modify S3237 message to be more accurate
  • 7262 - [C#, VB.NET] Revert "UtilityAnalyzer: Use RegisterCompilationStartAction" - fix performance regression
  • 7234 - [C#, VB.NET] SE Fix FPs: Improve fixed-count loops
  • 7156 - [C#, VB.NET] SE: Cache NumberConstraint
  • 7111 - [C#, VB.NET] SE: Concatenate string expression returns non-null string
  • 7260 - Update RSPEC before 9.2 release

Bug Fixes

  • 7050 - [C#] Fix AD0001 on S1186: NullReferenceException for top-level methods

9.1

Release 9.1 brings a set of rules that help users avoid performance pitfalls.

New Rules

  • 7132 - [C#] New rule S6618: "string.Create" should be used instead of "FormattableString"
  • 7131 - [C#, VB.NET] New rule S6617: "Contains" should be used instead of "Any" for simple equality checks
  • 7129 - [C#, VB.NET] New rule S6613: "First" and "Last" properties of "LinkedList" should be used instead of the "First()" and "Last()" extension methods
  • 7128 - [C#, VB.NET] New rule S6612: The lambda parameter should be used instead of capturing arguments in "ConcurrentDictionary" methods
  • 7127 - [C#, VB.NET] New rule S6610: "StartsWith" and "EndsWith" overloads that take a "char" should be used instead of the ones that take a "string"
  • 7126 - [C#, VB.NET] New rule S6609: "Min/Max" properties of "Set" types should be used instead of the "Enumerable" extension methods
  • 7125 - [C#, VB.NET] New rule S6608: Indexing should be used instead of "Enumerable" methods on types implementing "IList"
  • 7124 - [C#, VB.NET] New rule S6607: The collection should be filtered before sorting by using "Where" before "OrderBy"
  • 7123 - [C#, VB.NET] New rule S6605: Collection-specific "Exists" method should be used instead of the "Any" extension
  • 7122 - [C#, VB.NET] New rule S6603: The collection-specific "TrueForAll" method should be used instead of the "All" extension
  • 7121 - [C#, VB.NET] New rule S6602: "Find" method should be used instead of the "FirstOrDefault" extension

Improvements

  • 7197 - [VB.NET] Improve S2302 Message: Use NameOf for VB.NET
  • 7133 - [C#] Extend S3260 to include file access modifier on types

Bug Fixes

  • 7134 - [C#] Fix AD0001 in S138: NullReferenceException

False Negative

  • 2528 - [C#] FPs and FNs in the Symbolic Execution rules when null coalescing is combined with arithmetic expressions because we do not support constraints on integers

... (truncated)

Commits

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump SonarAnalyzer.CSharp in /singletonclient
e88719e 
Bumps [SonarAnalyzer.CSharp](https://github.com/SonarSource/sonar-dotnet) from 8.25.0.33663 to 9.2.0.71021.
- [Release notes](https://github.com/SonarSource/sonar-dotnet/releases)
- [Commits](SonarSource/sonar-dotnet@8.25.0.33663...9.2.0.71021)

---
updated-dependencies:
- dependency-name: SonarAnalyzer.CSharp
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Jun 5, 2023
@dependabot dependabot bot mentioned this pull request Jun 5, 2023
Closed
@codecov
Copy link

codecov bot commented Jun 5, 2023

Codecov Report

Patch coverage has no change and project coverage change: -0.50 ⚠️

Comparison is base (c769436) 80.59% compared to head (e88719e) 80.10%.

Additional details and impacted files 
@@                  Coverage Diff                   @@
##           g11n-csharp-client    #2378      +/-   ##
======================================================
- Coverage               80.59%   80.10%   -0.50%     
======================================================
  Files                      45       37       -8     
  Lines                    3169     3000     -169     
  Branches                  382      367      -15     
======================================================
- Hits                     2554     2403     -151     
+ Misses                    462      455       -7     
+ Partials                  153      142      -11
Flag Coverage Δ
unittests 80.10% <ø> (-0.50%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

see 8 files with indirect coverage changes

☔ View full report in Codecov by Sentry.
📢 Do you have feedback about the report comment? Let us know in this issue.

@tigershi
Copy link
Contributor

tigershi commented Jun 6, 2023

It need to jasper confirmed

@dependabot @github
Copy link
Author

dependabot bot commented on behalf of github Jun 12, 2023

Superseded by #2396.

@dependabot dependabot bot closed this Jun 12, 2023
@dependabot dependabot bot deleted the dependabot/nuget/singletonclient/g11n-csharp-client/SonarAnalyzer.CSharp-9.2.0.71021 branch June 12, 2023 17:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@jin-jasper jin-jasper

Labels

cla-not-required dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@tigershi @vmwclabot @jin-jasper