JeevanJames / IniFile

.NET library to open, modify and save .INI files
Apache License 2.0
23 stars 12 forks source link

Bump SonarAnalyzer.CSharp from 8.22.0.31243 to 8.50.0.58025 #154

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps SonarAnalyzer.CSharp from 8.22.0.31243 to 8.50.0.58025.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

8.50

Hi everyone,

This release brings you the second fragment of C# 11 support in our Sonarway rules. It fixes false negatives that were caused by the new C# 11 syntax. Look out for new releases as soon we will start adding C# 11 support to our non-sonarway rules.

Special thanks to @​Corniel for implementing a new VB.NET rule, and also for adding a new codefix provider.

New Rules

  • 6459 - [VB.NET] Implement S1123 - Obsolete attributes need explanation - for VB.NET
  • 6043 - [C#] Add code fix for S3353: Unchanged local variables should be const

Improvements

  • 6404 - Update RSPEC before 8.50 release
  • 5274 - Target JDK 11 in Java plugins

False Negative

  • 6434 - Fix S3433 FN: Support derived attributes
  • 6397 - Fix S1607 FN: Support derived attributes
  • 6392 - Fix S3456 FN: Support utf-8 literals
  • 6388 - [C#] Fix S3218 FN: Support interfaces
  • 6385 - Fix S2190 FN: Support mathematical operators in generic types
  • 6383 - Fix S5122 FN: Support raw string literals interpolation
  • 6378 - Fix S1117 FN: Support list patterns
  • 6377 - Fix S1481 FN: Support list patterns
  • 6376 - Fix S1313 FN: Support utf-8 literals

8.49

Hi everyone,

This release brings you the first fragment of C# 11 support in our Sonarway rules. It fixes a nice number of false positives and false negatives that were caused by the new C# 11 syntax. Look out for new releases as we will continue working on our C# 11 syntax support.

Special thanks to @​Corniel for his contribution: SonarSource/sonar-dotnet#6279.

New Rules

  • 6279 - [VB.NET] Implement S3871: Exceptions should be public - for VB.NET

Improvements

  • 6338 - Add repository link to NuGet packages
  • 6315 - Update RSPEC before 8.49 release

Bug Fixes

  • 6341 - [C#] AD0001 for S4426: CryptographicKeyShouldNotBeTooShort

False Positive

  • 6313 - Fix S2933 FP: Support unsigned right-shift operator (>>>)
  • 6312 - Fix S3875 FP: Do not raise an issue when implementing IEqualityOperators interface
  • 6311 - Fix S3927 FP: Support static abstract/virtual interface methods
  • 6307 - Fix S2225 FP: Support static virtual/abstract interface methods
  • 6302 - Fix S1854 FP: Support newlines in string interpolation
  • 6301 - Fix S1854 FP: Support interpolated raw string literals

False Negative

  • 6309 - Fix S6419 FN: Support unsigned right-shift operator (>>>)
  • 6308 - Fix S1121 FN: Support unsigned right-shift operator (>>>)
  • 6304 - Fix S2696 FN: Support unsigned right-shift operator (>>>)
  • 6303 - Fix S3010 FN: Support unsigned right-shift operator (>>>)

... (truncated)

Commits
  • b62663d Exclude Shim layer code from coverage (#6413)
  • ffaa72a Fix S1313 FN: Support utf-8 literals and add support utf8 string literals in ...
  • b910cd0 Update RSPEC (#6478)
  • cc2fde4 BUILD-2093 Use Vault in .github/workflows/release.yml
  • 5c709b1 Add C#11 specific test cases for non-sonarway rules M-O (#6426)
  • eb45094 S1075: Update UTs (#6465)
  • 5115639 S3449 FN: Remove unsigned right-shift operator test cases (>>>) (#6458)
  • 713e2fa Fix S1481 FN: Support list patterns (#6464)
  • 664d46d Fix S3218 FN: Support interfaces (#6436)
  • b109ce3 Bump Scanner in ITs to 5.9.0.57893 (#6474)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #160.