Skip to content

Bump the nuget-dependencies group with 1 update#19

Merged
Malcolmnixon merged 1 commit intomainfrom
dependabot/nuget/dot-config/nuget-dependencies-7eba02e13d
Feb 27, 2026
Merged

Bump the nuget-dependencies group with 1 update#19
Malcolmnixon merged 1 commit intomainfrom
dependabot/nuget/dot-config/nuget-dependencies-7eba02e13d

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Feb 27, 2026

Updated demaconsulting.spdxtool from 2.6.0 to 2.8.0.

Release notes

Sourced from demaconsulting.spdxtool's releases.

2.8.0

Build Report

Version Information

Field Value
Version 2.8.0
Commit Hash 503c9c3a106bf5344cc7675459c20f6a31ce608d
Previous Version 2.7.0
Previous Commit Hash 86475427e18a67e1198c89dc9f185297d16a355c

Changes

  • 149 - [Feature]: DotNet Pack Integration
  • #​151 - deps: Bump the nuget-dependencies group with 2 updates

Bugs Fixed

  • N/A

2.7.0

Build Report

Version Information

Field Value
Version 2.7.0
Commit Hash 86475427e18a67e1198c89dc9f185297d16a355c
Previous Version 2.6.0
Previous Commit Hash b662f94988c6efb3df092e8ed1c69bdaf5e12fb3

Changes

  • 105 - Update issue templates
  • #​107 - deps: Bump SonarAnalyzer.CSharp from 10.16.1.129956 to 10.17.0.131074
  • 108 - [FEATURE] Improve Quality Checks
  • 110 - [FEATURE] Fix Spelling Issues
  • #​112 - Exclude .DotSettings and .csproj files from cspell checks
  • #​113 - deps: Bump DemaConsulting.TestResults from 1.1.0 to 1.2.0
  • #​114 - deps: Bump SonarAnalyzer.CSharp from 10.17.0.131074 to 10.18.0.131500
  • #​115 - deps: Bump DemaConsulting.TestResults from 1.2.0 to 1.3.0
  • #​116 - deps: Bump Microsoft.CodeAnalysis.NetAnalyzers from 10.0.101 to 10.0.102
  • #​117 - deps: Bump Microsoft.SourceLink.GitHub from 8.0.0 to 10.0.102
  • 118 - [FEATURE] Update issues and pull request templates
  • 120 - [Feature]: SpdxTool User Guide PDF
  • 122 - [Feature]: Code Quality Report
  • 124 - [Feature]: CodeQL Cleanup
  • #​126 - Align build.yaml shell command formatting with SarifMark conventions
  • #​127 - ci(deps): bump actions/download-artifact from 6 to 7
  • #​128 - deps: Bump demaconsulting.sarifmark from 1.0.1 to 1.1.0
  • #​129 - deps: Bump demaconsulting.sonarmark from 1.0.0 to 1.1.0
  • #​130 - deps: Bump DemaConsulting.TestResults from 1.3.0 to 1.4.0
  • #​131 - deps: Bump SonarAnalyzer.CSharp from 10.18.0.131500 to 10.19.0.132793
  • #​132 - Group dependabot updates
  • #​133 - deps: Bump the nuget-dependencies group with 1 update
  • 134 - [Feature]: Csproj Cleanup
  • #​136 - deps: Bump the nuget-dependencies group with 4 updates
  • #​137 - Suppress CodeQL warnings for generated files in obj and bin folders
  • #​138 - Disable incremental_files_only for cspell-action
  • #​139 - deps: Bump the nuget-dependencies group with 3 updates
  • #​140 - Add GitHub agents from TemplateDotNetTool and update AGENTS.md
  • #​141 - Run project agents: repo consistency, code quality, requirements, docs, and code improvements
  • #​142 - fix: align build pipeline with TemplateDotNetTool patterns
  • 143 - [Feature]: Restructure User Guide
  • #​145 - Pre-release quality: fix formatting, sync documentation, restructure user guide, and port template improvements
  • 146 - [Feature]: Add Requirements
  • #​148 - deps: Bump the nuget-dependencies group with 7 updates

Bugs Fixed

... (truncated)

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the nuget-dependencies group with 1 update
7b9678d 
Bumps demaconsulting.spdxtool from 2.6.0 to 2.8.0

---
updated-dependencies:
- dependency-name: demaconsulting.spdxtool
  dependency-version: 2.8.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-dependencies
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Feb 27, 2026
@Malcolmnixon Malcolmnixon merged commit 068630a into main Feb 27, 2026
8 checks passed
@Malcolmnixon Malcolmnixon deleted the dependabot/nuget/dot-config/nuget-dependencies-7eba02e13d branch February 27, 2026 11:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@Malcolmnixon