Skip to content

Bump Meziantou.Analyzer and 7 others#10

Closed
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/nuget/minor-and-patch-0858f74bca
Closed

Bump Meziantou.Analyzer and 7 others#10
dependabot[bot] wants to merge 1 commit into
masterfrom
dependabot/nuget/minor-and-patch-0858f74bca

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github May 4, 2026

Copy link
Copy Markdown

Updated Meziantou.Analyzer from 3.0.50 to 3.0.61.

Release notes

Sourced from Meziantou.Analyzer's releases.

3.0.61

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.61

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.60...3.0.61

3.0.60

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.60

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.59...3.0.60

3.0.59

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.59

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.58...3.0.59

3.0.58

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.58

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.57...3.0.58

3.0.57

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.57

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.56...3.0.57

3.0.56

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.56

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.55...3.0.56

3.0.55

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.55

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.54...3.0.55

3.0.54

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.54

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.53...3.0.54

3.0.53

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.53

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.52...3.0.53

3.0.52

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.52

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.51...3.0.52

3.0.51

NuGet package: https://www.nuget.org/packages/Meziantou.Analyzer/3.0.51

What's Changed

Full Changelog: meziantou/Meziantou.Analyzer@3.0.50...3.0.51

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration from 10.0.6 to 10.0.7.

Release notes

Sourced from Microsoft.Extensions.Configuration's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration.Binder from 10.0.6 to 10.0.7.

Release notes

Sourced from Microsoft.Extensions.Configuration.Binder's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration.EnvironmentVariables from 10.0.6 to 10.0.7.

Release notes

Sourced from Microsoft.Extensions.Configuration.EnvironmentVariables's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration.Json from 10.0.6 to 10.0.7.

Release notes

Sourced from Microsoft.Extensions.Configuration.Json's releases.

No release notes found for this version range.

Commits viewable in compare view.

Pinned Microsoft.Extensions.Options.ConfigurationExtensions at 10.0.7.

Release notes

Sourced from Microsoft.Extensions.Options.ConfigurationExtensions's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated SonarAnalyzer.CSharp from 10.23.0.137933 to 10.25.0.139117.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

10.25

?

Feature

  • NET-3613 - Support Cobertura coverage file format
    • Cobertura report paths can be passed via the sonar.cs.cobertura.reportsPaths parameter
  • NET-3665 - Update RSPEC before 10.25 release

False Positive

  • NET-3640 - Fix S3400 FP: Don't report function with conditional compilation body

10.24

 This release brings a batch of false negative fixes and analyzer crash fixes.

Bug Fixes

  • NET-3596 - Fix S1144 AD0001: Index out of range exception with type named Nullable
  • NET-3522 - Fix S1215 AD0001: ArgumentOutOfRangeException
  • NET-3521 - Fix S2053 AD0001: NRE
  • NET-3520 - Fix S3267 AD0001: NRE

False Positives

  • NET-2276 - Fix S1192 FP: EF migration classes

False Negatives

  • NET-3569 - Fix T0008 and T0009 FN: Support extension blocks
  • NET-2875 - Fix S2092 FN: Null Conditional Assignment
  • NET-2857 - Fix S3330 FN: Null Conditional Assignment
  • NET-2719 - Fix S4136 FN: Extension methods
  • NET-2688 - Fix S4433 FN: Null-conditional assignment in tracker
  • NET-2675 - Fix S6418 FN: Field keyword
  • NET-2667 - Fix S2934 FN: Null-conditional assignment and field keyword
  • NET-2658 - Fix S127 FN: BitShiftCompound

Commits viewable in compare view.

Updated System.CommandLine from 2.0.6 to 2.0.7.

Release notes

Sourced from System.CommandLine's releases.

No release notes found for this version range.

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps Meziantou.Analyzer from 3.0.50 to 3.0.61
Bumps Microsoft.Extensions.Configuration from 10.0.6 to 10.0.7
Bumps Microsoft.Extensions.Configuration.Binder from 10.0.6 to 10.0.7
Bumps Microsoft.Extensions.Configuration.EnvironmentVariables from 10.0.6 to 10.0.7
Bumps Microsoft.Extensions.Configuration.Json from 10.0.6 to 10.0.7
Bumps Microsoft.Extensions.Options.ConfigurationExtensions from 10.0.6 to 10.0.7
Bumps SonarAnalyzer.CSharp from 10.23.0.137933 to 10.25.0.139117
Bumps System.CommandLine from 2.0.6 to 2.0.7

---
updated-dependencies:
- dependency-name: Meziantou.Analyzer
  dependency-version: 3.0.61
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: Microsoft.Extensions.Configuration
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: Microsoft.Extensions.Configuration.EnvironmentVariables
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: Microsoft.Extensions.Options.ConfigurationExtensions
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
- dependency-name: SonarAnalyzer.CSharp
  dependency-version: 10.25.0.139117
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-and-patch
- dependency-name: System.CommandLine
  dependency-version: 2.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-and-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github May 4, 2026

Copy link
Copy Markdown
Author

Labels

The following labels could not be found: deps, nuget. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot @github

dependabot Bot commented on behalf of github May 11, 2026

Copy link
Copy Markdown
Author

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot Bot closed this May 11, 2026
@dependabot dependabot Bot deleted the dependabot/nuget/minor-and-patch-0858f74bca branch May 11, 2026 03:35
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants