Skip to content

Bump SonarAnalyzer.CSharp from 8.41.0.50478 to 8.50.0.58025#472

Closed
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/nuget/SonarAnalyzer.CSharp-8.50.0.58025
Closed

Bump SonarAnalyzer.CSharp from 8.41.0.50478 to 8.50.0.58025#472
dependabot[bot] wants to merge 1 commit intodevelopfrom
dependabot/nuget/SonarAnalyzer.CSharp-8.50.0.58025

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Dec 6, 2022

Bumps SonarAnalyzer.CSharp from 8.41.0.50478 to 8.50.0.58025.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

8.50

Hi everyone,

This release brings you the second fragment of C# 11 support in our Sonarway rules. It fixes false negatives that were caused by the new C# 11 syntax. Look out for new releases as soon we will start adding C# 11 support to our non-sonarway rules.

Special thanks to @​Corniel for implementing a new VB.NET rule, and also for adding a new codefix provider.

New Rules

  • 6459 - [VB.NET] Implement S1123 - Obsolete attributes need explanation - for VB.NET
  • 6043 - [C#] Add code fix for S3353: Unchanged local variables should be const

Improvements

  • 6404 - Update RSPEC before 8.50 release
  • 5274 - Target JDK 11 in Java plugins

False Negative

  • 6434 - Fix S3433 FN: Support derived attributes
  • 6397 - Fix S1607 FN: Support derived attributes
  • 6392 - Fix S3456 FN: Support utf-8 literals
  • 6388 - [C#] Fix S3218 FN: Support interfaces
  • 6385 - Fix S2190 FN: Support mathematical operators in generic types
  • 6383 - Fix S5122 FN: Support raw string literals interpolation
  • 6378 - Fix S1117 FN: Support list patterns
  • 6377 - Fix S1481 FN: Support list patterns
  • 6376 - Fix S1313 FN: Support utf-8 literals

8.49

Hi everyone,

This release brings you the first fragment of C# 11 support in our Sonarway rules. It fixes a nice number of false positives and false negatives that were caused by the new C# 11 syntax. Look out for new releases as we will continue working on our C# 11 syntax support.

Special thanks to @​Corniel for his contribution: SonarSource/sonar-dotnet#6279.

New Rules

  • 6279 - [VB.NET] Implement S3871: Exceptions should be public - for VB.NET

Improvements

  • 6338 - Add repository link to NuGet packages
  • 6315 - Update RSPEC before 8.49 release

Bug Fixes

  • 6341 - [C#] AD0001 for S4426: CryptographicKeyShouldNotBeTooShort

False Positive

  • 6313 - Fix S2933 FP: Support unsigned right-shift operator (>>>)
  • 6312 - Fix S3875 FP: Do not raise an issue when implementing IEqualityOperators interface
  • 6311 - Fix S3927 FP: Support static abstract/virtual interface methods
  • 6307 - Fix S2225 FP: Support static virtual/abstract interface methods
  • 6302 - Fix S1854 FP: Support newlines in string interpolation
  • 6301 - Fix S1854 FP: Support interpolated raw string literals

False Negative

  • 6309 - Fix S6419 FN: Support unsigned right-shift operator (>>>)
  • 6308 - Fix S1121 FN: Support unsigned right-shift operator (>>>)
  • 6304 - Fix S2696 FN: Support unsigned right-shift operator (>>>)
  • 6303 - Fix S3010 FN: Support unsigned right-shift operator (>>>)

... (truncated)

Commits
  • b62663d Exclude Shim layer code from coverage (#6413)
  • ffaa72a Fix S1313 FN: Support utf-8 literals and add support utf8 string literals in ...
  • b910cd0 Update RSPEC (#6478)
  • cc2fde4 BUILD-2093 Use Vault in .github/workflows/release.yml
  • 5c709b1 Add C#11 specific test cases for non-sonarway rules M-O (#6426)
  • eb45094 S1075: Update UTs (#6465)
  • 5115639 S3449 FN: Remove unsigned right-shift operator test cases (>>>) (#6458)
  • 713e2fa Fix S1481 FN: Support list patterns (#6464)
  • 664d46d Fix S3218 FN: Support interfaces (#6436)
  • b109ce3 Bump Scanner in ITs to 5.9.0.57893 (#6474)
  • Additional commits viewable in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump SonarAnalyzer.CSharp from 8.41.0.50478 to 8.50.0.58025
ff23310 
Bumps [SonarAnalyzer.CSharp](https://github.com/SonarSource/sonar-dotnet) from 8.41.0.50478 to 8.50.0.58025.
- [Release notes](https://github.com/SonarSource/sonar-dotnet/releases)
- [Commits](SonarSource/sonar-dotnet@8.41.0.50478...8.50.0.58025)

---
updated-dependencies:
- dependency-name: SonarAnalyzer.CSharp
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Dec 6, 2022
@dependabot dependabot bot mentioned this pull request Dec 6, 2022
Closed
@dependabot @github
Copy link
Contributor Author

dependabot bot commented on behalf of github Dec 21, 2022

Superseded by #481.

@dependabot dependabot bot closed this Dec 21, 2022
@dependabot dependabot bot deleted the dependabot/nuget/SonarAnalyzer.CSharp-8.50.0.58025 branch December 21, 2022 04:03
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants