search

JeevanJames / IniFile

.NET library to open, modify and save .INI files
Apache License 2.0
23 stars 12 forks source link

Bump SonarAnalyzer.CSharp from 8.22.0.31243 to 8.51.0.59060 #160

Closed dependabot[bot] closed 1 year ago

dependabot[bot] commented 1 year ago

Bumps SonarAnalyzer.CSharp from 8.22.0.31243 to 8.51.0.59060.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

8.51

Hello everyone,

We are happy to announce that in this release we implemented Incremental PR analysis for C# and Vb.Net, a feature that can significantly reduce the analysis time when analyzing PRs.

Additionally, we fixed false positives and negatives introduced by the new C# 11 syntax and introduced a new rule #5693

Special thanks to our contributors @​Corniel for #5693 and @​Smenus for #6497.

New features

Incremental PR analysis (#6514, #6512, #6487, #6486, #6485, #6484, #6483)

New rules

  • 5693 - [C#, VB.NET] New rule S6444: RegEx evaluation should have a time out specified

Improvements

  • 6477 - Update RSPEC before 8.51 release and deprecate S4214

False Positive

  • 6497 - [C#] Fix S2699 FP: Support derivations of ExpectedExceptionBaseAttribute for MsTest
  • 6476 - [C#, VB.NET] Fix FNs/FPs: Add support for LibraryImportAttribute
  • 6429 - [C#] Fix S1067 FP: Conditionals in pattern should not be considered as a unit for the whole pattern

False Negative

  • 6517 - [C#] Fix S2674 FN: Add support for ConfigureAwait
  • 6481 - [C#] Fix S2674 FN: Add support for Stream.ReadAtLeast
  • 6441 - Fix S2302 FN: Issue is not raised when the name of one of the method parameters is a raw string literal
  • 6423 - [C#] Fix S1244 FN: Half, NFloat, and IFloatingPointIeee754 are not supported
  • 6399 - Fix S2201 FN: Support native ints
  • 6394 - Fix S2068 FN: Support utf-8 string literals
  • 6393 - Fix S1168 FN: Support mathematical operators in generic types
  • 6387 - Fix S3267 FN: Support list pattern
  • 6386 - Fix S3444 FN: Support static methods in interfaces
  • 6164 - Fix S4426 FN: On .Net 7 when using ECDsaOpenSsl

8.50

Hi everyone,

This release brings you the second fragment of C# 11 support in our Sonarway rules. It fixes false negatives that were caused by the new C# 11 syntax. Look out for new releases as soon we will start adding C# 11 support to our non-sonarway rules.

Special thanks to @​Corniel for implementing a new VB.NET rule, and also for adding a new codefix provider.

New Rules

  • 6459 - [VB.NET] Implement S1123 - Obsolete attributes need explanation - for VB.NET
  • 6043 - [C#] Add code fix for S3353: Unchanged local variables should be const

Improvements

  • 6404 - Update RSPEC before 8.50 release
  • 5274 - Target JDK 11 in Java plugins

False Negative

  • 6434 - Fix S3433 FN: Support derived attributes

... (truncated)

Commits
  • e14c642 Fix ProjectOutFolderPath processing (#6573)
  • 5736bd3 Fix S1067 FN: binary expressions should be treated as transparent (#6565)
  • 969db6c S1067 FN: Add condition of conditional ternary operator to list of visited ch...
  • a2484e4 Update rspec before 8.51 release and deprecate S4214 (#6556)
  • f6a6857 Incremental PR analysis: Cache the hash only for CSharp and VbNet files (#6551)
  • 383fc59 Incremental PR Analysis: Add Java ITs that assert duplication reporting (#6537)
  • 2227150 S2699 Reproducer for AssertionMethodAttribute is ignored when assertion metho...
  • e27457c Update coding-style for arrow position on method/property (#6504)
  • 04c986c RegEx evaluation should have a time out specified (#5693)
  • db3b159 Bump protobuf-java from 3.21.10 to 3.21.12 (#6539)
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot] commented 1 year ago

Superseded by #162.