Bump the nuget-dependencies group with 5 updates

[dependabot]

Updated demaconsulting.reviewmark from 0.1.0 to 0.2.0.

Release notes

Sourced from demaconsulting.reviewmark's releases.

0.2.0

Build Report

Version Information

Field	Value
Version	0.2.0
Commit Hash	dada8832724e6ed7068cb6c406b1c5a1b4414fc3
Previous Version	0.1.0
Previous Commit Hash	536acd7e980cc0e552cebb3896b83e6ef65535b4

Changes

• #​23 - Bump the nuget-dependencies group with 7 updates
• #​24 - Bump the nuget-dependencies group with 1 update
• #​25 - Bring in latest repo-consistency agent and apply template improvements from TemplateDotNetTool
• 26 - [Feature]: Add --lint support
• 28 - [Feature]: Add a 'none' evidence source

Bugs Fixed

• N/A

Commits viewable in compare view.

Updated demaconsulting.sonarmark from 1.2.0 to 1.3.0.

Release notes

Sourced from demaconsulting.sonarmark's releases.

1.3.0

Build Report

Version Information

Field	Value
Version	1.3.0
Commit Hash	55049a32d8fd00b94979dcb9e72a3fe98985c60e
Previous Version	1.2.0
Previous Commit Hash	b95e0c5efab316e910aefda8ed5c8255eacf9a16

Changes

• #​91 - Bump the nuget-dependencies group with 2 updates
• #​92 - Sync SonarMark with TemplateDotNetTool template updates (PRs #​41, #​44, #​45, #​46)
• #​93 - Bump actions/upload-artifact from 6 to 7
• #​94 - Bump actions/download-artifact from 7 to 8
• #​95 - Bump the nuget-dependencies group with 2 updates
• #​96 - fix: add missing github-actions grouping to dependabot.yml
• #​97 - Bump the nuget-dependencies group with 1 update
• #​98 - Apply TemplateDotNetTool template consistency updates to SonarMark
• #​99 - Apply TemplateDotNetTool PR #​52: staged pipelines, artifact consolidation, and OTS Software requirements
• #​100 - Bring in recent changes from TemplateDotNetTool (PRs #​53, #​54, #​55)
• #​101 - Bump the nuget-dependencies group with 2 updates
• #​102 - Bump the nuget-dependencies group with 1 update
• #​103 - Bump the nuget-dependencies group with 5 updates
• #​104 - Bump the nuget-dependencies group with 1 update
• #​105 - Bring in latest repo-consistency agent and template improvements from TemplateDotNetTool
• #​106 - Split monolithic requirements.yaml, add docs/design/ folder, and align review-sets with software tree
• #​107 - Add design document PDF build, system.md architectural overview, and SonarMark-Design review-set

Bugs Fixed

• N/A

Commits viewable in compare view.

Updated demaconsulting.versionmark from 1.0.0 to 1.1.0.

Release notes

Sourced from demaconsulting.versionmark's releases.

1.1.0

Build Report

Version Information

Field	Value
Version	1.1.0
Commit Hash	ca02d60bf74b00e36a3fa8467a4009d1d2b39dab
Previous Version	1.0.0
Previous Commit Hash	9448ef56aa3d377c7f48bf619a9b7d97484edbb5

Changes

• #​26 - Bump the nuget-dependencies group with 3 updates
• #​27 - Sync PathHelpers.SafePathCombine null validation with TemplateDotNetTool
• #​28 - Sync with TemplateDotNetTool template (PRs #​39–#​45)
• #​29 - Bump the nuget-dependencies group with 1 update
• #​30 - Apply template consistency updates from TemplateDotNetTool
• #​31 - Bring in recent changes from the template repo
• #​32 - Bump the nuget-dependencies group with 2 updates
• #​33 - Bump the nuget-dependencies group with 1 update
• #​34 - Add ReviewMark integration and file review infrastructure
• 35 - [Feature]: Reviewable Requirements and Design Documentation
• #​37 - fix: resolve VersionMark-CommandLine-Review, VersionMark-Utilities-Review, VersionMark-Configuration-Review, VersionMark-VersionInfo-Review, and VersionMark-Validation-Review failures
• #​38 - Bump the nuget-dependencies group with 7 updates
• #​39 - Bump the nuget-dependencies group with 1 update
• #​40 - Update repo-consistency agent and apply template improvements from TemplateDotNetTool
• 41 - [Feature]: Add lint support

Bugs Fixed

• N/A

Commits viewable in compare view.

Updated Polyfill from 9.22.0 to 9.23.0.

Release notes

Sourced from Polyfill's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated SonarAnalyzer.CSharp from 10.21.0.135717 to 10.22.0.136894.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

10.22

Hello everyone,
This release brings 4 new rules to help developers transition to C# 14, and a bunch of false positive fixes.

New rules

• NET-3361 - New rule S8381: "scoped" should be escaped when used as a type name in lambda parameters
• NET-3359 - New rule S8368: "extension" identifiers should be escaped to avoid contextual keyword conflicts
• NET-3347 - New rule S8380: Return types named "partial" should be escaped with "@"
• NET-3345 - New rule S8367: Identifiers should not conflict with the "field" keyword in C# 14?

False Positive

• NET-3443 - Fix S1940 FP: for floating point numbers that can be NaN "!(a <= b)" is not the same as "a > b"
• NET-3001 - Fix S3063 FP: Concatenation with identifier
• NET-1569 - Fix S5944 FP: AddressOf(MethodName) in Return statement
• NET-3445 - Fix T0029 FP: Inside target-typed new
• NET-2817 - Fix T0029 FP: Ident for collection expression members
• NET-2024 - Fix T0029 FP: Inside array initializer
• NET-3341 - Fix T0029 FP: After member access
• NET-3462 - Fix T0042 FP: Inside constructors and collection initializers
• NET-3426 - Fix T0042: Raw string in collection initializer
• NET-2888 - Fix T0042 FP: Returned from method
• NET-2874 - Fix T0042 FP: Raw string in ternary

Bugs

• NET-3386 - Fix S4583 AD0001: BeginInvoke callback declared in separate file

Other

• NET-3385 - S2612: Rule type changed from Security Hotspot to Vulnerability

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions