Bump the analyzers group with 4 updates

[dependabot]

Updated Microsoft.CodeAnalysis.NetAnalyzers from 9.0.0 to 10.0.102.

Release notes

Sourced from Microsoft.CodeAnalysis.NetAnalyzers's releases.

10.0.102-sb1

You can build .NET 10.0 from the repository by cloning the release tag v10.0.102-sb1 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.101

You can build .NET 10.0 from the repository by cloning the release tag v10.0.101 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.100

You can build .NET 10.0 from the repository by cloning the release tag v10.0.100 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

To produce artifacts with the .NET 10 GA version strings, users must pass the branding argument to the build: --branding rtm.

10.0.100-rc.2.25502.107

You can build .NET 10.0 RC 2 from the repository by cloning the release tag v10.0.100-rc.2.25502.107 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

Note: GitHub automatically generates the "Source code (tar.gz/zip)" archives included in this release. Please download the official source code from:

• dotnet-source-10.0.100-rc.2.25502.107.tar.gz
• dotnet-source-10.0.100-rc.2.25502.107.zip

10.0.100-rc.1.25451.107

You can build .NET 10.0 RC 1 from the repository by cloning the release tag v10.0.100-rc.1.25451.107 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.100-preview.7.25380.108

You can build .NET 10.0 Preview 7 from the repository by cloning the release tag v10.0.100-preview.7.25380.108 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.6.25358.103

You can build .NET 10.0 Preview 6 from the repository by cloning the release tag v10.0.0-preview.6.25358.103 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.5.25277.114

You can build .NET 10.0 Preview 5 from the repository by cloning the release tag v10.0.0-preview.5.25277.114 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.4.25258.110

You can build .NET 10.0 Preview 4 from the repository by cloning the release tag v10.0.0-preview.4.25258.110 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.3.25171.5

You can build .NET 10.0 Preview 3 from the repository by cloning the release tag v10.0.0-preview.3.25171.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.2.25163.2

You can build .NET 10.0 Preview 2 from the repository by cloning the release tag v10.0.0-preview.2.25163.2 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

10.0.0-preview.1.25080.5

You can build .NET 10.0 Preview 1 from the repository by cloning the release tag v10.0.0-preview.1.25080.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.113

You can build .NET 9.0 from the repository by cloning the release tag v9.0.113 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.112

You can build .NET 9.0 from the repository by cloning the release tag v9.0.112 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.111

You can build .NET 9.0 from the repository by cloning the release tag v9.0.111 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.110

You can build .NET 9.0 from the repository by cloning the release tag v9.0.110 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.109

You can build .NET 9.0 from the repository by cloning the release tag v9.0.109 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.101

You can build .NET 9.0 from the repository by cloning the release tag v9.0.101 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.7

You can build .NET 9.0 from the repository by cloning the release tag v9.0.7 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.6

You can build .NET 9.0 from the repository by cloning the release tag v9.0.6 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.5

You can build .NET 9.0 from the repository by cloning the release tag v9.0.5 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.4

You can build .NET 9.0 from the repository by cloning the release tag v9.0.4 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.3

You can build .NET 9.0 from the repository by cloning the release tag v9.0.3 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.2

You can build .NET 9.0 from the repository by cloning the release tag v9.0.2 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

9.0.1

You can build .NET 9.0 from the repository by cloning the release tag v9.0.1 and following the build instructions in the main README.md.

Alternatively, you can build from the sources attached to this release directly.
More information on this process can be found in the dotnet/dotnet repository.

Attached are PGP signatures for the GitHub generated tarball and zipball. You can find the public key at https://dot.net/release-key-2023

Commits viewable in compare view.

Updated Roslynator.Analyzers from 4.13.1 to 4.15.0.

Release notes

Sourced from Roslynator.Analyzers's releases.

4.15.0

Added

• Add option roslynator_null_conditional_operator.avoid_negative_boolean_comparison (PR)
  • Do not suggest to use null-conditional operator when result would be ... != true/false
  • Applicable for RCS1146

Fixed

• Fix analyzer RCS1172 (PR)
• [CLI] Fix loc command (PR)
• Exclude ref-field backed properties from RCS1085 (PR by @​ovska)
• [CLI] Fix rename-symbol scope option not being applied correctly (PR by @​andrtmschkw)
• [CLI] Fix rename-symbol support for top-level statement (PR by @​andrtmschkw)

Changed

• Migrate to .NET 10 (including command-line tool) (PR)

4.14.1

Added

• [CLI] Add support for slnx files (PR by @​darthtrevino)
  • Bump Roslyn to 4.14.0
  • Drop support for .NET 7 SDK

Fixed

• Fix analyzer RCS1246 (PR)
• Fix analyzer RCS1248 (PR)
• Fix analyzer RCS1203 (PR)
• Fix analyzer RCS1043 (PR)
• Fix analyzer RCS1213 (PR)
  • Add unity method OnRectTransformDimensionsChange
• Fix analyzer RCS1253 (PR)
• Fix refactoring Check expression for null (PR)

Changed

• Change behavior of analyzer RCS1206 (PR)
  • The condition for option omit_when_single_line will be that the braces/brackets are on the same line, not just the expression in the braces/brackets

4.14.0

Added

• [CLI] Add support for GitLab analyzer reports (PR)

Fixed

• Fix analyzer RCS1264 (PR)
• Fix analyzer RCS1229 (PR)
• Fix analyzer RCS1250 (PR by @​aihnatiuk)
• Fix analyzer RCS1260 (PR)
• Fix analyzer RCS1105 (PR)
• Fix analyzer RCS1260 (PR)

Changed

• Disable analyzer RCS1036 by default (PR)
  • Use analyzer RCS0063 instead

Removed

• Remove legacy config options (PR)

Commits viewable in compare view.

Updated Roslynator.Formatting.Analyzers from 4.13.1 to 4.15.0.

Release notes

Sourced from Roslynator.Formatting.Analyzers's releases.

4.15.0

Added

• Add option roslynator_null_conditional_operator.avoid_negative_boolean_comparison (PR)
  • Do not suggest to use null-conditional operator when result would be ... != true/false
  • Applicable for RCS1146

Fixed

• Fix analyzer RCS1172 (PR)
• [CLI] Fix loc command (PR)
• Exclude ref-field backed properties from RCS1085 (PR by @​ovska)
• [CLI] Fix rename-symbol scope option not being applied correctly (PR by @​andrtmschkw)
• [CLI] Fix rename-symbol support for top-level statement (PR by @​andrtmschkw)

Changed

• Migrate to .NET 10 (including command-line tool) (PR)

4.14.1

Added

• [CLI] Add support for slnx files (PR by @​darthtrevino)
  • Bump Roslyn to 4.14.0
  • Drop support for .NET 7 SDK

Fixed

• Fix analyzer RCS1246 (PR)
• Fix analyzer RCS1248 (PR)
• Fix analyzer RCS1203 (PR)
• Fix analyzer RCS1043 (PR)
• Fix analyzer RCS1213 (PR)
  • Add unity method OnRectTransformDimensionsChange
• Fix analyzer RCS1253 (PR)
• Fix refactoring Check expression for null (PR)

Changed

• Change behavior of analyzer RCS1206 (PR)
  • The condition for option omit_when_single_line will be that the braces/brackets are on the same line, not just the expression in the braces/brackets

4.14.0

Added

• [CLI] Add support for GitLab analyzer reports (PR)

Fixed

• Fix analyzer RCS1264 (PR)
• Fix analyzer RCS1229 (PR)
• Fix analyzer RCS1250 (PR by @​aihnatiuk)
• Fix analyzer RCS1260 (PR)
• Fix analyzer RCS1105 (PR)
• Fix analyzer RCS1260 (PR)

Changed

• Disable analyzer RCS1036 by default (PR)
  • Use analyzer RCS0063 instead

Removed

• Remove legacy config options (PR)

Commits viewable in compare view.

Updated SonarAnalyzer.CSharp from 10.8.0.113526 to 10.19.0.132793.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

10.19



Documentation

• NET-3012 - Modify Rule S3903: Update description for C#​10

False Positive

• NET-3004 - Fix S2696 FP: New extension method format triggers FP when accessing static fields

False Negative

• NET-3011 - Fix S4790 FN: Support Using statement

Task

• NET-2948 - Update RSPEC before 10.19 release

Bug

• NET-1866 - Support future VS versions in NuGet package

10.18

This releases focuses on fixing the false-positives that are raised on code making use of the new features in C# 14.

Improvement

• NET-2921 - Fix passthrough calculation in ModelBuilder
• NET-2903 - Remove manual extension methods
• NET-2895 - Cleanup handling of ParameterList of primary constructors

Task

• NET-2917 - Update RSPEC before 10.18 release

False Positive

• NET-2898 - Fix S2583/S2589 FP: Extension Members
• NET-2877 - Fix S2225 FP: Extension member
• NET-2832 - Fix S3063 FP: NullConditionalOperator
• NET-2825 - Fix S1144 FP: Partial events
• NET-2821 - Fix S3264 FP: Partial events
• NET-2805 - Fix S1144 FP: S1144 Is confused by Debugger Display attribute
• NET-2748 - Fix S3459 FP: NullConditional Assignment
• NET-2716 - Fix S2325 FP: Field Keyword
• NET-2712 - Fix S2953 FP: Extension block member
• NET-2707 - Fix S3877 FP: Equals method without IEquatable
• NET-2684 - Fix S7039 FP/FN: Null-conditional assignment
• NET-2672 - Fix S3928 FP: Extension block
• NET-2671 - Fix S2970 FP: Null Conditional Assignment
• NET-2668 - Fix S3398 FP: On private methods in C#​14 extensions classes
• NET-2644 - Fix S1144 FP: Always raises on private methods in extension block
• NET-2621 - Fix S2325 FP: Incorrectly reports on C# 14 extensions
• NET-2620 - Fix S4545 FP: Extension Methods
• NET-2391 - Fix S1121 FP: Extract (null-forgiving) assignment from expression
• NET-1914 - Fix S3264 FP: when using +=

False Negative

• NET-2813 - Fix S2292 FN: FieldKeyword
• NET-2681 - Fix S2692 FN: Support Spans

10.17



False Negative

• NET-2840 - Improve S2077: Support more methods

Task

• NET-2839 - Update RSPEC before 10.17 release

New Feature

• NET-2820 - ShimLayer: Implement Factory
• NET-2789 - ShimLayer Generator: Enums
• NET-2728 - ShimLayer Generator: SyntaxNodes

Bug

• NET-2816 - Fix S3603 AD0001: NRE when LocalFunction inside Record constructor in C#​7

Improvement

• NET-2722 - Activate new ShimLayer
• NET-2721 - Create diff for ShimLayer
• NET-2720 - Create ShimLayer projects

10.16.2

Rotations of binary signing keys

10.16.1

Rotations of binary signing keys

10.16

False Positive

• NET-1729 - Fix S2114 FP: list.AddRange(list) and list.Concat(list) are sensible

False Negative

• NET-399 - Fix S4790 FN: Support CryptographicOperations data methods

Bug

• NET-2686 - Fix S3604 AD0001: NRE with partial constructor

10.15

False Positive

• NET-2198 - Fix S1905 FP: Cast of default! expression is required
• NET-2197 - Fix S1905 FP: stackalloc and Span conversions
• NET-1641 - Fix S1905 FP: casting IEnumerable<string?> to IEnumerable<string>
• NET-2157 - Fix S2589 FP: Don't raise an issue after a delegate is invoked
• NET-2073 - Fix S2699 FP: Add support for FsCheck property tests
• NET-1537 - Fix S6964 FP: Don't raise on properties annotated with the BindRequiredAttribute

Improvement

• NET-2112 - Consider ExplodedNodes relevant if a successor would be relevant
• NET-2183 - SE: Set constraint on operation when learning from IsPattern

False Negative

• NET-429 - Fix S4275 FN: Support partial properties

Task

• NET-2208 - Update RSpec before release

10.14

Hey everyone,

This release mostly focuses on mitigating (NET-2196) a performance regression that was introduced in 10.13.

Improvement

• NET-2196 - Fix path algorithm for execution flows to mitigate performance regression
• NET-2177 - Improve how the Symbolic Execution engine handles exception paths
• NET-2135 - Support xUnit V3
• NET-2163 - Provide Interface for other plugins to add rules to VB.NET SonarWay profile

False Negative

• NET-235 - Fix S2053: Adjust required salt length to be 32 bytes

Task

• NET-2170 - Update RSPEC before 10.14 release

10.13

Hello everyone,

In this release, we've focused on:

• False positive fixes
• Enhancing S2259's secondary locations to provide clearer, step-by-step explanations of null pointer dereferences issues.

False Positives

• NET-2099 - Fix S3885 FP: Do not raise in ResolutionEventHandler
• NET-2023 - Fix S3257 FP: Array with target-typed new
• NET-1646 - Fix S3267 FP: Loops should be simplified with LINQ expressions
• NET-1588 - Fix S1066 FP: Combination of dynamic and out should not raise
• NET-882 - Fix S3257 FP: Don't raise for C# 10 and later when there's explicit delegate creation

Improvements

• NET-2095 - Improve incremental PR analysis path detection
• SE: S2259 - Improve secondary locations

10.12

This release brings the VB version of S6418 and a few FP and FN fixes.

New Rule

• NET-1379 - New Rule: Implement S6418 Hard-coded secrets are security-sensitive for VB.NET

False Positive

• NET-1526 - Fix S3267 FP: Only raise on IEnumerable

False Negative

• NET-1260 - Fix S1215 FN: GC.GetTotalMemory(forceFullCollection: true) should not be called
• NET-1258 - Fix S6678 FN: Lowercase placeholders in interpolated string
• NET-1255 - Fix S3267 FN: Logical operators are not supported

Task

• NET-2060 - Update RSPEC before 11.12 release

10.11

Hello everyone!
In this release we fixed a bunch of false positives and false negatives.
Additionally this version adds support for telemetry in order to gather information on feature usage. Telemetry, requires scanner 10.2.0 or greater.

False Positive

• NET-1522 - Fix S2068 FP: Do not raise on password:secret
• NET-1149 - Fix S3626 FP: Add exception when return statement is preceding local functions

False Negative

• NET-1263 - Fix S1871 FN: Nested if .. else if chain
• NET-1256 - S2068: Remove word boundary(\b) from regex
• NET-1254 - Fix S3878 FN: When params are passed as array through an attribute
• NET-1252 - FN S1168: Support IndexerDeclaration and ConversionOperatorDeclaration
• NET-459 - Fix S1168 FN: Add support for partial indexers

10.10.1

Bugfix release to fix combability with SonarQube Cloud + a simplification to the ProfileRegistrar

Task

• NET-1463 - Update RSPEC before 10.10.1 release
• NET-1461 - Make CSharpSonarWayProfile be compatible and simplify ProfileRegistrar

10.10

Hey everyone, this release mostly focuses on internal and technical things.

General

• NET-1444 - Move ProfileRegistrar to org.sonar.plugins.csharpenterprise.api
• NET-1326 - Update RSPEC before 10.10 release

Internal Styling Rules

• NET-1378 - New Rule T0045: Use var
• NET-1359 - New Rule T0043: Avoid primary constructors on normal classes and structs
• NET-1358 - New Rule T0042: Indent raw string literal +4
• NET-1357 - New Rule T0041: Use raw string literals for multiline strings
• NET-1356 - New Rule T0040: Use minimum necessary interpolation characters
• NET-1355 - New Rule T0039: Protected field should start with lower case letter
• NET-1354 - New Rule T0038: Use fields instead of auto-implemented private or protected properties
• NET-1347 - New Rule T0000: Don't use Get prefixes
• NET-1346 - New Rule T0037: Use .Test suffix namespace
• NET-1345 - New rule T0046: Move extension method to dedicated class
• NET-1344 - New Rule T0035: Do not use var for this deconstruction
• NET-1343 - New Rule T0034: Do not embed var into this condition
• NET-1342 - New Rule T0033: Swap the logic to use positive conditions instead
• NET-1341 - New Rule T0032: Move the method body to the next line
• NET-1339 - New Rule T0030: Move the field initializer on the same line
• NET-1338 - New Rule T0029: Indent all arguments +4 further than the invocation line
• NET-1337 - New Rule T0028: Move all arguments on the same line, or wrap all of them
• NET-1336 - New Rule T0027: Move subsequent expressions on separate lines
• NET-1335 - New Rule T0026: Indent member access +4 further than the initial line
• NET-1334 - New Rule T0025: Indent ‘?’ and ‘:’ +4 further than the condition line
• NET-1333 - New Rule T0024: Place multiline ‘?’ and ‘:’ on separate lines
• NET-1332 - New Rule T0022: Indent all parameters with the first one
• NET-1331 - New Rule T0021: Use extension methods for Linq
• NET-1329 - New Rule T0019: Indent operator correctly
• NET-1328 - New Rule T0018: Move the operator to the beginning of the next line
• NET-1327 - New Rule T0015: Move local function at the end of the method
• NET-1237 - New Rule T0044: Don't add Arrange, Act, and Assert(s) comments
• NET-1325 - Improve T0007: Raise on nondeclaring is { } check

10.9

Hello everyone!

This is a mega-hardening release! Enjoy 😄

False Positive

• NET-1309 - Fix S2583 FP: Support overrides in IsImplementingInterfaceMember
• NET-1308 - Fix S2583 FP: Add support for AdressOf operator
• NET-1302 - Fix S4158 FP: Don't raise on GetEnumerator() calls
• NET-1295 - Fix S3236 FP: Exclude Debug.Assert
• NET-1290 - Fix S4158 FP: Support RouteValueDictionary in AspNetCore
• NET-1289 - Fix S4158 FP: Adding methods with well defined sematics
• NET-1288 - Fix S4158 FP: Recognize Add methods with bool return type
• NET-1287 - Fix S4158 FP: Don't raise on SetValue
• NET-1280 - Fix S2342 FP: Flaky reports
• NET-1278 - Fix S3440 FP: Variable assignment and switch expression
• NET-1246 - Fix S1481 FP: Don't report on discard like looking variables
• NET-1242 - Fix S2583/S4158 FP: Support for collections that are initialized with object
• NET-1241 - Fix S2589 FP: Don't track concurrent collections
• NET-1230 - Fix S4158 FP: Immutable collections
• NET-1223 - Fix S3267 FP: ref struct types cannot leave the stack
• NET-1214 - Fix S2259 FP: Foreach loop over empty collection
• NET-1212 - Fix S2259 FP: Learn bool from NotNull constraint and Null value
• NET-1208 - Fix S2589 FP: Rule ignores case guards
• NET-1207 - Fix S3966 FP: disposing element of indexable after declaration pattern
• NET-1203 - Fix S3966 FP: Enumerating a collection of tuples
• NET-1202 - Fix S2259 FP: Foreach nested in try, nested in loop
• NET-1188 - Improve S4158 - Empty Collections should not be Enumerated
• NET-1088 - Fix S3240 FP: Ignore when a conditional block contains a ternary
• NET-800 - Fix S2259 FP: FlowCaptures in loops and try-regions

False Negative

• NET-1299 - Fix S2053 FN: Support Copy methods
• NET-1257 - Fix S4790 FN: New HashData overloads not recognized
• NET-1194 - Fix S4158 FN: Collection Expressions (C# 12)
• NET-357 - Fix S2068 FN: does not consider launchSettings.json files
• NET-210 - Fix S4158 FN: AddRange with empty collection

Bug

• NET-1267 - Fix S2068 bug: Issue location is out of range in web.config for elements or attributes with an xml namespace
• NET-1184 - Roslyn rule import should map the issue severity to the Software Quality impact in SonarQube Server

Improvement

• NET-1217 - Improve S3996: Set location to the property instead of record

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov-commenter]

⚠️ Please install the to ensure uploads and comments are reliably processed by Codecov.

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 100.00%. Comparing base (2080f59) to head (5b91a02).
❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@            Coverage Diff            @@
##            master      #276   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           39        39           
  Lines          424       424           
  Branches        55        55           
=========================================
  Hits           424       424           

Flag	Coverage Δ
unittests	99.76% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.