V9.0.9/service pack

[gimlichael]

This pull request updates multiple NuGet package release notes to version 9.0.9 and documents that dependencies have been updated to their latest versions with respect to supported target frameworks (TFMs). Additionally, the NGINX base image version is bumped in the DocFX Dockerfile.

Dependency and Documentation Updates:

• Updated release notes for all relevant NuGet packages to version 9.0.9, noting availability for .NET 9, .NET 8, and in some cases .NET Standard 2.0, and documenting that dependencies have been updated to the latest versions for their respective TFMs. (.nuget/Cuemon.AspNetCore.App/PackageReleaseNotes.txt [1] .nuget/Cuemon.AspNetCore.Authentication/PackageReleaseNotes.txt [2] .nuget/Cuemon.AspNetCore.Mvc/PackageReleaseNotes.txt [3] .nuget/Cuemon.AspNetCore.Razor.TagHelpers/PackageReleaseNotes.txt [4] .nuget/Cuemon.AspNetCore/PackageReleaseNotes.txt [5] .nuget/Cuemon.Core.App/PackageReleaseNotes.txt [6] .nuget/Cuemon.Core/PackageReleaseNotes.txt [7] .nuget/Cuemon.Data.Integrity/PackageReleaseNotes.txt [8] .nuget/Cuemon.Data.SqlClient/PackageReleaseNotes.txt [9] .nuget/Cuemon.Diagnostics/PackageReleaseNotes.txt [10] .nuget/Cuemon.Extensions.AspNetCore.Authentication/PackageReleaseNotes.txt [11] .nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Text.Json/PackageReleaseNotes.txt [12] .nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Xml/PackageReleaseNotes.txt [13] .nuget/Cuemon.Extensions.AspNetCore.Mvc.RazorPages/PackageReleaseNotes.txt [14] .nuget/Cuemon.Extensions.AspNetCore.Mvc/PackageReleaseNotes.txt [15] .nuget/Cuemon.Extensions.AspNetCore.Text.Json/PackageReleaseNotes.txt [16] .nuget/Cuemon.Extensions.AspNetCore.Xml/PackageReleaseNotes.txt [17] .nuget/Cuemon.Extensions.AspNetCore/PackageReleaseNotes.txt [18] .nuget/Cuemon.Extensions.Collections.Generic/PackageReleaseNotes.txt [19]

Build Environment:

• Updated the NGINX base image version in .docfx/Dockerfile.docfx from 1.29.0-alpine to 1.29.1-alpine.

Summary by CodeRabbit

• Chores

  • Updated dependencies across .NET 9/8 and .NET Standard targets (incl. Microsoft.Extensions, SQL clients, xUnit tooling) to latest patch versions.
  • Bumped Docker base NGINX image to 1.29.1-alpine.
  • Refreshed test runner Docker image to the latest tag.

• Documentation

  • Added 9.0.9 release notes across packages, noting availability for .NET 9/.NET 8 and updated dependencies.
  • Updated changelog with a 9.0.9 entry indicating a service update focused on dependency refreshes.

[coderabbitai]

Walkthrough

Bumps nginx base image to 1.29.1-alpine, updates central package versions, refreshes Docker test image tag, and adds 9.0.9 release entries across numerous NuGet PackageReleaseNotes files. Also appends a 9.0.9 entry to CHANGELOG.md. No code or API surface changes.

Changes

Cohort / File(s)	Summary of Changes
Docker build image .docfx/Dockerfile.docfx	Updated default ARG NGINX_VERSION from 1.29.0-alpine to 1.29.1-alpine; all nginx:${NGINX_VERSION} stages now use 1.29.1-alpine.
Centralized dependencies Directory.Packages.props	Bumped multiple packages: Codebelt.Extensions.Xunit 10.0.4→10.0.5, xunit.runner.visualstudio 3.1.3→3.1.4, Microsoft.Data.Sqlite (8.0.19→8.0.20; 9.0.8→9.0.9), Microsoft.Extensions.* (net9: 9.0.8→9.0.9), Microsoft.Data.SqlClient 6.0.2→6.1.1.
Test environments testenvironments.json	Updated Docker image tag to gimlichael/ubuntu-testrunner:mono-net8.0.414-9.0.305.
Changelog CHANGELOG.md	Added 9.0.9 entry dated 2025-09-13 describing a service update focused on package dependencies.
NuGet release notes (added 9.0.9 entries) .nuget/*/PackageReleaseNotes.txt, including: .nuget/Cuemon.*/*/PackageReleaseNotes.txt and .nuget/Cuemon.*/*.../PackageReleaseNotes.txt	Inserted top-level “Version 9.0.9” sections with Availability (variously .NET 9/.NET 8/.NET Standard) and ALM bullet “CHANGED Dependencies to latest and greatest with respect to TFMs.” In many files, the dependency-change bullet was moved from 9.0.8 to 9.0.9; others left 9.0.8 unchanged.

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~10 minutes

Possibly related PRs

• V9.0.7/service pack #124 — Earlier PR adding ARG NGINX_VERSION=1.29.0-alpine; this PR updates that default to 1.29.1-alpine.
• V9.0.8/service pack #125 — Prior sweep updating release notes and dependency versions; this PR continues similar 9.0.9 updates.
• ⬆️ bump dependencies #122 — Related dependency/version bumps affecting .docfx/Dockerfile.docfx and Directory.Packages.props.

Poem

I hop through versions, light and spry,
From 1.29.0 to .1 I fly.
Dependencies nibbled neat and fine,
9.0.9 now leads the line.
With changelog trails and tests in tow—
A carrot of green, onward we go! 🥕🐇

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title Check	✅ Passed	The title "V9.0.9/service pack" succinctly identifies the PR as a v9.0.9 service pack and aligns with the changeset (release-note additions and dependency bumps), so it accurately summarizes the primary intent and is concise for history scanning. It is slightly terse but not misleading.
Docstring Coverage	✅ Passed	No functions found in the changes. Docstring coverage check skipped.

✨ Finishing touches

🧪 Generate unit tests

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch v9.0.9/service-pack

Tip

👮 Agentic pre-merge checks are now available in preview!

Pro plan users can now enable pre-merge checks in their settings to enforce checklists before merging PRs.

• Built-in checks – Quickly apply ready-made checks to enforce title conventions, require pull request descriptions that follow templates, validate linked issues for compliance, and more.
• Custom agentic checks – Define your own rules using CodeRabbit’s advanced agentic capabilities to enforce organization-specific policies and workflows. For example, you can instruct CodeRabbit’s agent to verify that API documentation is updated whenever API schema files are modified in a PR. Note: Upto 5 custom checks are currently allowed during the preview period. Pricing for this feature will be announced in a few weeks.

Please see the documentation for more information.

Example:

reviews:
  pre_merge_checks:
    custom_checks:
      - name: "Undocumented Breaking Changes"
        mode: "warning"
        instructions: |
          Pass/fail criteria: All breaking changes to public APIs, CLI flags, environment variables, configuration keys, database schemas, or HTTP/GraphQL endpoints must be documented in the "Breaking Change" section of the PR description and in CHANGELOG.md. Exclude purely internal or private changes (e.g., code not exported from package entry points or explicitly marked as internal).

Please share your feedback with us on this Discord post.

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[coderabbitai]

Actionable comments posted: 0

Caution

Some comments are outside the diff and can’t be posted inline due to platform limitations.

⚠️ Outside diff range comments (4)

.nuget/Cuemon.Security.Cryptography/PackageReleaseNotes.txt (1)

31-33: Fix double article typo (“a a …”).

User-facing docs; grammar should be clean.

-# New Features
-- ADDED SecureHashAlgorithm512256 class in the Cuemon.Security.Cryptography namespace that provides a a SHA-512-256 implementation of the SHA (Secure Hash Algorithm) cryptographic hashing algorithm for 512-bit hash values
+# New Features
+- ADDED SecureHashAlgorithm512256 class in the Cuemon.Security.Cryptography namespace that provides a SHA-512-256 implementation of the SHA (Secure Hash Algorithm) cryptographic hashing algorithm for 512-bit hash values

.nuget/Cuemon.AspNetCore/PackageReleaseNotes.txt (1)

62-64: Fix grammar in an older entry.

“from the class from the” → “from the” to avoid duplication.

-# Breaking Changes
-- REMOVED BadRequestMessage property from the class from the ApiKeySentinelOptions class in the Cuemon.AspNetCore.Http.Headers namespace
+# Breaking Changes
+- REMOVED BadRequestMessage property from the ApiKeySentinelOptions class in the Cuemon.AspNetCore.Http.Headers namespace

.nuget/Cuemon.Xml/PackageReleaseNotes.txt (1)

63-64: Typo: incorrect object name in description

“convert FailureConverter to XML” likely intends “convert Failure to XML”.

-- ADDED FailureConverter class in the Cuemon.Xml.Serialization.Converters namespace to convert FailureConverter to XML
+- ADDED FailureConverter class in the Cuemon.Xml.Serialization.Converters namespace to convert Failure to XML

.nuget/Cuemon.Extensions.Text.Json/PackageReleaseNotes.txt (1)

64-65: Fix mistaken object name in feature note (“FailureConverter to JSON”).

Should read “convert Failure to JSON,” not “FailureConverter to JSON.”

Apply:

-# New Features
-- ADDED FailureConverter class in the Cuemon.Extensions.Text.Json.Converters namespace to convert FailureConverter to JSON
+# New Features
+- ADDED FailureConverter class in the Cuemon.Extensions.Text.Json.Converters namespace to convert Failure to JSON

♻️ Duplicate comments (13)

.nuget/Cuemon.Net/PackageReleaseNotes.txt (1)

1-6: Same note as Xml: dedupe/clarify 9.0.8 vs 9.0.9 ALM bullets

Confirm whether the 9.0.8 “deps updated” bullet should remain after adding it to 9.0.9, or remove it to avoid double-reporting.

.nuget/Cuemon.Extensions.AspNetCore.Mvc.RazorPages/PackageReleaseNotes.txt (1)

1-6: Confirm intent for 9.0.8 ALM line after adding 9.0.9

Ensure the 9.0.8 “deps updated” bullet isn’t redundant now that 9.0.9 carries the same statement.

.nuget/Cuemon.Diagnostics/PackageReleaseNotes.txt (1)

1-6: Keep history unambiguous: 9.0.8 vs 9.0.9 ALM

As above: decide whether to remove or keep (with clarification) the 9.0.8 dependency-bump bullet to avoid confusion with the new 9.0.9 entry.

.nuget/Cuemon.AspNetCore.Mvc/PackageReleaseNotes.txt (1)

1-6: Release-notes hygiene: avoid duplicated dependency bullets

Mirror the approach across packages: either keep the 9.0.8 bullet with context or remove it now that 9.0.9 states the dependency updates.

.nuget/Cuemon.Extensions.Runtime.Caching/PackageReleaseNotes.txt (1)

1-6: Deduplicate “deps updated” messaging across adjacent versions

Same consideration: verify whether 9.0.8 should still mention the dependency change after 9.0.9 adds it.

.nuget/Cuemon.Resilience/PackageReleaseNotes.txt (2)

1-6: Mirror TFMs with project configuration

Double-check that the Availability row matches the project’s TargetFramework(s).

Refer to the TFM audit script posted in .nuget/Cuemon.Threading/PackageReleaseNotes.txt (Line 1).

---

5-5: Changelog tone

Recommend replacing “latest and greatest” with neutral wording as suggested earlier for consistency across packages.

.nuget/Cuemon.Extensions.IO/PackageReleaseNotes.txt (1)

5-5: Neutralize phrasing

Apply the same neutral wording for the dependency-change bullet as in other packages.

.nuget/Cuemon.Core/PackageReleaseNotes.txt (1)

1-6: Confirm TFMs and keep wording consistent

• Verify Availability against project TFMs.
• Replace “latest and greatest” with neutral wording as previously suggested.

.nuget/Cuemon.Extensions.Core/PackageReleaseNotes.txt (1)

1-6: Consistency: TFMs + phrasing

• Ensure Availability matches actual TargetFrameworks.
• Adopt the neutral dependency-change phrasing across all 9.0.9 notes.

.nuget/Cuemon.Runtime.Caching/PackageReleaseNotes.txt (1)

1-6: Quick pass: accurate TFMs and tone

• Cross-check Availability with csproj TFMs.
• Standardize the dependency bullet wording as per earlier comment.

.nuget/Cuemon.Xml/PackageReleaseNotes.txt (1)

1-6: Same two nits

• Verify Availability vs project TFMs.
• Use neutral phrasing for dependency update.

.nuget/Cuemon.Extensions.Collections.Specialized/PackageReleaseNotes.txt (1)

1-6: Apply prior suggestions

• Confirm TFMs align with project targets.
• Use neutral dependency-update wording.
• Normalize whitespace if NBSPs are present.

🧹 Nitpick comments (62)

.nuget/Cuemon.Extensions.AspNetCore.Text.Json/PackageReleaseNotes.txt (2)

1-1: Remove BOM/zero‑width char before "Version".

Line 1 starts with a U+FEFF (BOM) character. This can render as "Version" on some platforms/NuGet UIs.

-Version 9.0.9
+Version 9.0.9

---

3-3: Replace NBSP-only lines with true blank lines.

Lines 3 and 6 are U+00A0 (non-breaking space). Use empty lines to avoid odd rendering/formatting diffs.

- 
+
@@
- 
+

Also applies to: 6-6

.nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Xml/PackageReleaseNotes.txt (3)

1-1: Remove UTF-8 BOM character at file start.

The invisible BOM (shown here as a leading glyph before “Version”) can cause diff noise and tooling issues. Save as UTF‑8 without BOM.

---

3-6: Normalize whitespace-only lines.

Lines appear to contain non-breaking spaces (NBSP). Replace with true empty lines to avoid rendering inconsistencies across editors.

Apply this diff:

- 
+# (empty line)
 ...
- 
+# (empty line)

---

5-5: Tighten release note wording (avoid marketing phrasing).

Prefer precise language over “latest and greatest.”

Apply this diff:

-- CHANGED Dependencies to latest and greatest with respect to TFMs
+- CHANGED Updated dependencies to the latest compatible versions for the targeted TFMs

.nuget/Cuemon.Extensions.AspNetCore.Authentication/PackageReleaseNotes.txt (2)

1-1: Normalize header formatting and strip invisible characters.

• Line 1 begins with a UTF-8 BOM (U+FEFF). Drop it to avoid diff churn and tooling hiccups.
• Lines 3 and 6 contain a non-breaking space (U+00A0). Replace with true empty lines.
• Consider standardizing “Version” headers to use a colon (matches older entries like “Version: 8.1.0”).

Apply:

-Version 9.0.9
+Version: 9.0.9
- 
+
- 
+
-Version 9.0.8
+Version: 9.0.8

Also applies to: 3-3, 6-6, 7-7

---

5-5: Consider making the dependency note more informative.

If any dependency upgrades are notable (major bumps, security fixes), add a brief bullet to aid consumers scanning the release notes.

.nuget/Cuemon.Extensions.Hosting/PackageReleaseNotes.txt (3)

1-1: Remove UTF-8 BOM at file start.

There's a BOM character before "Version". Prefer UTF-8 without BOM to avoid odd rendering in some tooling.

---

3-6: Replace NBSP-only spacer lines with true blank lines.

Lines 3 and 6 contain a non-breaking space (U+00A0). Use empty lines to avoid layout glitches in DocFX/NuGet.

Apply:

- 
+
- 
+

---

5-5: Expand acronym on first use.

Spell out TFMs once for clarity.

-- CHANGED Dependencies to latest and greatest with respect to TFMs
+- CHANGED Dependencies to latest and greatest with respect to Target Framework Monikers (TFMs)

.nuget/Cuemon.Security.Cryptography/PackageReleaseNotes.txt (4)

1-1: Remove stray BOM/zero‑width char before "Version".

The leading invisible character ("") can cause diff churn and tooling quirks. Save the file as UTF‑8 without BOM.

-Version 9.0.9
+Version 9.0.9

---

5-5: Use a more formal wording for the ALM note.

“latest and greatest” reads informal for release notes. Suggest tightening language.

-- CHANGED Dependencies to latest and greatest with respect to TFMs
+- CHANGED Dependencies: updated to the latest compatible versions per target frameworks (TFMs)

---

1-6: Optional: add release date for 9.0.9.

If consistent with your documentation style, add a date for traceability.

 Version 9.0.9
 Availability: .NET 9, .NET 8 and .NET Standard 2.0
+
+# Date
+2025-09-13

---

82-95: Normalize “Version” header style (colon usage).

Older entries use “Version: 8.x.x”; newer use “Version 9.x.x”. Recommend consistent formatting.

-Version: 8.1.0
+Version 8.1.0
...
-Version: 8.0.1
+Version 8.0.1
...
-Version: 8.0.0
+Version 8.0.0

.nuget/Cuemon.Extensions.Threading/PackageReleaseNotes.txt (3)

1-1: Remove stray BOM/zero-width char before "Version".

Line 1 starts with a BOM/zero-width character (visible as ""). Drop it to avoid noisy diffs and odd renderings.

-Version 9.0.9
+Version 9.0.9

---

2-2: Optional: add a serial comma for readability (keep if repo style omits it).

-Availability: .NET 9, .NET 8 and .NET Standard 2.0
+Availability: .NET 9, .NET 8, and .NET Standard 2.0

---

5-5: Optional: prefer a more formal phrasing for ALM note.

If desired, tighten tone while keeping meaning.

-- CHANGED Dependencies to latest and greatest with respect to TFMs
+- CHANGED Updated dependencies to the latest compatible versions for supported TFMs

.nuget/Cuemon.Extensions.AspNetCore.Xml/PackageReleaseNotes.txt (4)

1-1: Remove BOM (zero-width char) at start of file.

The leading invisible character before “Version 9.0.9” can cause odd rendering. Save as UTF-8 without BOM.

---

3-6: Normalize spacer lines to plain blank lines.

Current lines contain non‑breaking spaces (NBSP). Replace with empty lines for consistency.

Apply:

- 
+ 
...
- 
+ 

---

1-4: Optionally add a release date to the 9.0.9 header.

Improves traceability when scanning the changelog.

---

5-5: Rephrase duplicated "Dependencies" ALM bullets and avoid repeating the identical note across 9.0.8/9.0.9

Update all .nuget/**/PackageReleaseNotes.txt entries that contain "- CHANGED Dependencies to latest and greatest with respect to TFMs" — use neutral wording and remove the 9.0.8 bullet if the dependency update only occurred in 9.0.9.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for supported TFMs

testenvironments.json (1)

12-12: Pin Docker image to a manifest digest in testenvironments.json

Tag exists on Docker Hub — amd64 digest: sha256:abe285bf86e8d7c573b3eefc9373d09248260dfe132deff18839f88fb86e9b0b (also: unknown digest sha256:f6d961f1e0a4c28f9ffdd002689b51381330a0359c55901c214b837ace65e12f). Update testenvironments.json (line 12) to use gimlichael/ubuntu-testrunner@sha256:abe285bf86e8d7c573b3eefc9373d09248260dfe132deff18839f88fb86e9b0b for reproducible CI.

CHANGELOG.md (1)

9-12: Changelog entry looks good; consider calling out infra bumps.

Optional: add a short “Infrastructure” bullet noting the DocFX NGINX base to 1.29.1-alpine and the Ubuntu test runner image bump for traceability.

.nuget/Cuemon.AspNetCore.Authentication/PackageReleaseNotes.txt (1)

1-6: Release note added correctly; tighten wording.

Consider replacing “latest and greatest” with “latest compatible” for a more formal tone in NuGet.

-# ALM
-- CHANGED Dependencies to latest and greatest with respect to TFMs
+# ALM
+- CHANGED Dependencies to latest compatible versions with respect to TFMs

.nuget/Cuemon.Extensions.DependencyInjection/PackageReleaseNotes.txt (1)

1-6: 9.0.9 block added; suggest formalizing the ALM bullet.

-# ALM
-- CHANGED Dependencies to latest and greatest with respect to TFMs
+# ALM
+- CHANGED Dependencies to the latest compatible versions with respect to TFMs

.nuget/Cuemon.Extensions.Collections.Generic/PackageReleaseNotes.txt (1)

1-6: Looks good; consider consistent phrasing of dependency updates.

-# ALM
-- CHANGED Dependencies to latest and greatest with respect to TFMs
+# ALM
+- CHANGED Dependencies to the latest compatible versions with respect to TFMs

.nuget/Cuemon.Extensions.Diagnostics/PackageReleaseNotes.txt (1)

1-6: 9.0.9 entry added; minor tone tweak optional.

-# ALM
-- CHANGED Dependencies to latest and greatest with respect to TFMs
+# ALM
+- CHANGED Dependencies to the latest compatible versions with respect to TFMs

.nuget/Cuemon.AspNetCore.App/PackageReleaseNotes.txt (1)

1-6: Entry added correctly; optional wording polish.

-# ALM
-- CHANGED Dependencies to latest and greatest with respect to TFMs
+# ALM
+- CHANGED Dependencies to the latest compatible versions with respect to TFMs

.nuget/Cuemon.AspNetCore/PackageReleaseNotes.txt (1)

1-6: 9.0.9 notes added; consider formalizing the dependency wording.

-# ALM
-- CHANGED Dependencies to latest and greatest with respect to TFMs
+# ALM
+- CHANGED Dependencies to the latest compatible versions with respect to TFMs

.nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Text.Json/PackageReleaseNotes.txt (3)

5-5: Polish ALM bullet phrasing and add period

Replace colloquial “latest and greatest” with precise wording.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-1: Drop UTF-8 BOM

The leading BOM character before “Version 9.0.9” can cause noisy diffs. Save as UTF‑8 without BOM.

---

3-6: Replace NBSP-only spacer lines with real blank lines

Lines containing only a non‑breaking space render oddly in diffs and editors. Use truly empty lines.

.nuget/Cuemon.Extensions.Data/PackageReleaseNotes.txt (2)

5-5: Clarify ALM bullet and add period

Prefer precise wording over “latest and greatest.”

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Remove BOM and NBSP-only spacer lines

Save as UTF‑8 without BOM and replace NBSP-only lines with empty lines for clean diffs.

.nuget/Cuemon.Extensions.AspNetCore.Mvc/PackageReleaseNotes.txt (2)

5-5: Refine ALM bullet phrasing

Use clear, professional wording and end with a period.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Normalize encoding and spacing

Remove the BOM and NBSP-only blank lines to avoid formatting artifacts.

.nuget/Cuemon.Core.App/PackageReleaseNotes.txt (2)

5-5: Tighten ALM bullet language

Replace informal phrasing; add terminal period.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Encoding/whitespace cleanup

Drop BOM and convert NBSP-only lines to true blanks for consistency.

.nuget/Cuemon.Extensions.Net/PackageReleaseNotes.txt (2)

5-5: Make ALM bullet precise

Prefer “updated to latest compatible versions” over “latest and greatest”; end with a period.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Remove BOM and NBSP-only spacer lines

This prevents odd rendering across tools and reduces diff noise.

.nuget/Cuemon.Data.Integrity/PackageReleaseNotes.txt (2)

5-5: Refine dependency note wording

Use explicit wording and a period.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Clean up BOM and NBSP-only lines

Save without BOM and replace NBSP-only lines with true blanks.

.nuget/Cuemon.Extensions.AspNetCore/PackageReleaseNotes.txt (2)

5-5: Clarify and punctuate ALM bullet

Swap out informal phrasing; add a period.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Standardize encoding/spacing

Remove UTF‑8 BOM and NBSP-only spacer lines to keep diffs clean.

.nuget/Cuemon.Data.SqlClient/PackageReleaseNotes.txt (2)

5-5: Improve ALM bullet clarity

Prefer precise wording and end with a period.

- - CHANGED Dependencies to latest and greatest with respect to TFMs
+ - CHANGED Updated dependencies to the latest compatible versions for the declared Target Framework Monikers (TFMs).

---

1-6: Remove BOM and NBSP-only spacer lines

Prevents odd display and unnecessary diffs across editors.

.nuget/Cuemon.Extensions.Xml/PackageReleaseNotes.txt (1)

1-6: Avoid double-reporting dependency bumps between 9.0.9 and 9.0.8

Many .nuget/*/PackageReleaseNotes.txt files list "- CHANGED Dependencies to latest and greatest with respect to TFMs" under both Version 9.0.9 and Version 9.0.8; remove or clarify the 9.0.8 bullets (or indicate 9.0.9 supersedes) to prevent ambiguous audit trails.

.nuget/Cuemon.IO/PackageReleaseNotes.txt (1)

1-6: Verify TFMs and dedupe ALM bullet

• Availability lists both .NET Standard 2.1 and 2.0 (expected for IO?). Please confirm this remains accurate for 9.x.
• As with others, confirm whether to keep/remove the 9.0.8 dependency-bump bullet after adding it to 9.0.9.

.nuget/Cuemon.Threading/PackageReleaseNotes.txt (2)

5-5: Prefer neutral wording for changelog bullets

“latest and greatest” is colloquial; consider a neutral phrasing for consistency and professionalism.

-- CHANGED Dependencies to latest and greatest with respect to TFMs
+- CHANGED Dependencies to the latest supported versions for each TFM

---

3-6: Whitespace normalization

Lines appear to contain non-breaking space characters. Replace with normal blank lines to avoid rendering/encoding issues across tools.

.nuget/Cuemon.Extensions.IO/PackageReleaseNotes.txt (1)

3-6: Whitespace normalization

Replace non-breaking spaces with plain blank lines.

.nuget/Cuemon.Extensions.Data.Integrity/PackageReleaseNotes.txt (1)

1-6: Remove UTF-8 BOM and NBSP-only lines.

Line 1 starts with a BOM (invisible “”), and lines 3/6 appear to be NBSP-only. Prefer plain UTF-8 without BOM and true blank lines to avoid rendering diffs/noise.

.nuget/Cuemon.Extensions.Text.Json/PackageReleaseNotes.txt (3)

1-6: Strip BOM and NBSP-only lines.

Same formatting nit as other files: remove BOM on line 1 and replace NBSP-only lines (3/6) with true blanks.

---

117-120: Grammar: “Sometimes … these settings”.

Minor doc polish for professionalism.

- - Sometime you have to balance security and usability/developer experience; if you need to expose a highly secured API you can simply change this settings as part of your application startup
+ - Sometimes you have to balance security and usability/developer experience; if you need to expose a highly secured API you can simply change these settings as part of your application startup

---

7-12: Consider removing duplicated “CHANGED Dependencies …” from 9.0.8.

Keep the dependency-change note only under 9.0.9 for clarity.

.nuget/Cuemon.Extensions.Text/PackageReleaseNotes.txt (2)

1-6: Drop BOM and NBSP-only lines.

Remove BOM on line 1; replace lines 3/6 with blank lines.

---

7-12: Optionally de-duplicate the 9.0.8 ALM “CHANGED Dependencies …”.

If 9.0.9 is the canonical home for this note, delete it from 9.0.8.

.nuget/Cuemon.AspNetCore.Razor.TagHelpers/PackageReleaseNotes.txt (2)

1-6: Clean up BOM and NBSP-only lines.

Remove BOM on line 1; convert NBSP-only lines (3/6) to empty lines.

---

7-12: Consider removing duplicated 9.0.8 “CHANGED Dependencies …”.

Align with 9.0.9-only placement if that’s the intended pattern.

.nuget/Cuemon.Extensions.Reflection/PackageReleaseNotes.txt (2)

1-6: Remove BOM and NBSP-only lines.

Same formatting nit: strip BOM at line 1 and replace NBSP-only separators with blank lines.

---

7-12: Optionally remove duplicated 9.0.8 dependency-change bullet.

Keep it only under 9.0.9 to avoid mixed messaging.

Directory.Packages.props (1)

34-36: Unify Microsoft.Data.SqlClient to 6.1.1 (netstandard2.0 compatible)

6.1.1 lists netstandard2.0 as a compatible TFM; update Directory.Packages.props (lines 34–36) from 5.2.3 → 6.1.1, or add a brief comment explaining why 5.2.3 is intentionally pinned. (nuget.org)

📜 Review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between e75f0c4 and 7259d87.

📒 Files selected for processing (45)

• .docfx/Dockerfile.docfx (1 hunks)
• .nuget/Cuemon.AspNetCore.App/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.AspNetCore.Authentication/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.AspNetCore.Mvc/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.AspNetCore.Razor.TagHelpers/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.AspNetCore/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Core.App/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Core/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Data.Integrity/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Data.SqlClient/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Diagnostics/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Authentication/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Text.Json/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Xml/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Mvc.RazorPages/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Mvc/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Text.Json/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore.Xml/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.AspNetCore/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Collections.Generic/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Collections.Specialized/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Core/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Data.Integrity/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Data/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.DependencyInjection/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Diagnostics/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Hosting/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.IO/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Net/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Reflection/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Runtime.Caching/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Text.Json/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Text/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Threading/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Extensions.Xml/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.IO/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Net/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Resilience/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Runtime.Caching/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Security.Cryptography/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Threading/PackageReleaseNotes.txt (1 hunks)
• .nuget/Cuemon.Xml/PackageReleaseNotes.txt (1 hunks)
• CHANGELOG.md (1 hunks)
• Directory.Packages.props (3 hunks)
• testenvironments.json (1 hunks)

⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (2)

• GitHub Check: call-build (Release) / 🛠️ Build
• GitHub Check: call-build (Debug) / 🛠️ Build

🔇 Additional comments (25)

.nuget/Cuemon.Extensions.AspNetCore.Text.Json/PackageReleaseNotes.txt (2)

4-5: LGTM on ALM entry.

Content and tone are consistent with prior entries.

---

2-2: Verified — csproj targets net9.0 and net8.0.
src/Cuemon.Extensions.AspNetCore.Text.Json/Cuemon.Extensions.AspNetCore.Text.Json.csproj contains net9.0;net8.0.

.nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Xml/PackageReleaseNotes.txt (1)

2-2: TFMs verified — no action required.

Confirmed: src/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Xml/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Xml.csproj (and the other project files) specify net9.0;net8.0, matching "Availability: .NET 9 and .NET 8".

.nuget/Cuemon.Extensions.AspNetCore.Authentication/PackageReleaseNotes.txt (1)

2-2: Confirmed: TFMs match Availability. src/Cuemon.Extensions.AspNetCore.Authentication/Cuemon.Extensions.AspNetCore.Authentication.csproj contains net9.0;net8.0.

.nuget/Cuemon.Extensions.Hosting/PackageReleaseNotes.txt (2)

1-7: Avoid duplicate “Dependencies updated” entry across 9.0.9 and 9.0.8.

If 9.0.9 supersedes the dependency update claimed under 9.0.8 below, remove it from 9.0.8 to prevent confusion.

---

2-2: Confirmed TFMs: net9.0, net8.0, netstandard2.0

src/Cuemon.Extensions.Hosting/Cuemon.Extensions.Hosting.csproj has no and inherits from Directory.Build.props which lists net9.0;net8.0;netstandard2.0 (Directory.Build.props:17).

.nuget/Cuemon.Security.Cryptography/PackageReleaseNotes.txt (1)

7-12: Confirm duplication of dependency-change note in 9.0.8

Verification failed to locate .nuget//PackageReleaseNotes.txt so I couldn't confirm whether "CHANGED Dependencies" appears under Version 9.0.8 — if that note was intended only for 9.0.9, remove it from 9.0.8. Check .nuget//PackageReleaseNotes.txt (example: rg -n -C2 -g '.nuget/**/PackageReleaseNotes.txt' -e '^Version 9.0.8' -e 'CHANGED Dependencies' .)

.nuget/Cuemon.Extensions.Threading/PackageReleaseNotes.txt (2)

1-6: 9.0.9 entry looks good and consistent with prior blocks.

Content and structure match earlier entries. No blockers.

---

1-6: TFMs in Availability are correct — no change required. Target frameworks are defined in Directory.Build.props (line 17): net9.0;net8.0;netstandard2.0.

.nuget/Cuemon.Extensions.AspNetCore.Xml/PackageReleaseNotes.txt (1)

2-2: TFMs verified — net9.0; net8.0

src/Cuemon.Extensions.AspNetCore.Xml/Cuemon.Extensions.AspNetCore.Xml.csproj contains net9.0;net8.0; release notes are accurate (not netstandard2.0).

.nuget/Cuemon.AspNetCore.Authentication/PackageReleaseNotes.txt (1)

1-6: Align 9.0.8 ALM "CHANGED Dependencies" bullet across all packages.
Automated verification in the sandbox failed; manual check required. Run:
find . -path './.nuget//PackageReleaseNotes.txt' -exec grep -nH -e '^Version 9.0.8' -e 'CHANGED Dependencies' {} +
Align the "CHANGED Dependencies" bullet consistently (either keep under 9.0.8 or move to 9.0.9) across all .nuget/ packages.

.nuget/Cuemon.Extensions.DependencyInjection/PackageReleaseNotes.txt (1)

2-2: Availability matches TFMs — no action required. Directory.Build.props defines net9.0;net8.0;netstandard2.0 for non-test projects; src/Cuemon.Extensions.DependencyInjection/Cuemon.Extensions.DependencyInjection.csproj has no explicit TargetFramework(s) and therefore inherits netstandard2.0.

.nuget/Cuemon.Extensions.Collections.Generic/PackageReleaseNotes.txt (1)

2-2: Confirmed: package still targets netstandard2.0 alongside net8/net9

Directory.Build.props defines net9.0;net8.0;netstandard2.0 (line 17) and .nuget/Cuemon.Extensions.Collections.Generic/PackageReleaseNotes.txt lists "Availability: .NET 9, .NET 8 and .NET Standard 2.0".

.nuget/Cuemon.Extensions.Diagnostics/PackageReleaseNotes.txt (1)

7-12: ALM bullet for Version 9.0.8 is consistent across sibling packages — no change required.
Verified: every .nuget/*/PackageReleaseNotes.txt contains the "CHANGED Dependencies to latest and greatest with respect to TFMs" ALM bullet under Version 9.0.8.

.nuget/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Text.Json/PackageReleaseNotes.txt (1)

2-2: Availability matches csproj — no action required.
src/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Text.Json/Cuemon.Extensions.AspNetCore.Mvc.Formatters.Text.Json.csproj contains net9.0;net8.0, which matches the PackageReleaseNotes "Availability: .NET 9 and .NET 8".

.docfx/Dockerfile.docfx (1)

1-1: Drop the unused base stage; pin images by digest; use COPY not ADD.

• The base stage is not referenced later — remove it or use it as the final stage; if removed, ensure the final stage clears /usr/share/nginx/html to avoid leftover content.
• nginx:1.29.1 fixes CVE‑2025‑53859 vs 1.29.0 and an image digest is available (example: nginx@sha256:d0e36505c62945cec1b7f0f7d2fbf39d51d26b71e9320a730dd326e002e21c99). Pin nginx to its digest; pin codebeltnet/docfx by digest if a digest exists.
• Replace ADD with COPY for copying repository files.

File: .docfx/Dockerfile.docfx (lines 1–1)

.nuget/Cuemon.Threading/PackageReleaseNotes.txt (1)

1-6: Verify TFMs in notes match actual Cuemon.Threading project TFMs

No Cuemon.Threading .csproj was found in the repository. Repository projects predominantly target net9.0;net8.0 (some also include netstandard2.1/netstandard2.0). Ensure .nuget/Cuemon.Threading/PackageReleaseNotes.txt Availability (.NET 9, .NET 8, .NET Standard 2.0) exactly matches the TargetFramework(s) of the Cuemon.Threading package — or provide the path to the Cuemon.Threading .csproj so I can verify.

.nuget/Cuemon.Extensions.IO/PackageReleaseNotes.txt (1)

1-6: Confirmed: both netstandard2.1 and netstandard2.0 are targeted.
src/Cuemon.IO/Cuemon.IO.csproj — net9.0;net8.0;netstandard2.1;netstandard2.0
src/Cuemon.Extensions.IO/Cuemon.Extensions.IO.csproj — net9.0;net8.0;netstandard2.1;netstandard2.0

.nuget/Cuemon.Extensions.Data.Integrity/PackageReleaseNotes.txt (2)

1-6: 9.0.9 entry looks good.

Availability and ALM text align with the PR objective.

---

7-12: ```shell
#!/bin/bash
set -euo pipefail

echo "=== Files containing 'Version 9.0.8' ==="
rg -n --hidden --no-ignore "Version 9.0.8" .nuget || true

echo
echo "=== 'CHANGED Dependencies' occurrences with context (6 lines) ==="
rg -n -C6 "CHANGED Dependencies" .nuget || true

echo
echo "=== Multiline search: does the 'Version 9.0.8' block contain 'CHANGED Dependencies'? ==="
rg -n -U -P "Version 9.0.8(?s).*?CHANGED Dependencies" .nuget || true

</blockquote></details>
<details>
<summary>.nuget/Cuemon.Extensions.Text.Json/PackageReleaseNotes.txt (1)</summary><blockquote>

`1-6`: **9.0.9 entry looks good.**

Matches availability and intent.

</blockquote></details>
<details>
<summary>.nuget/Cuemon.Extensions.Text/PackageReleaseNotes.txt (1)</summary><blockquote>

`1-6`: **9.0.9 entry looks good.**

Consistent with other packages.

</blockquote></details>
<details>
<summary>.nuget/Cuemon.AspNetCore.Razor.TagHelpers/PackageReleaseNotes.txt (1)</summary><blockquote>

`1-6`: **9.0.9 entry looks good.**

Availability correctly excludes netstandard2.0 per earlier removal.

</blockquote></details>
<details>
<summary>.nuget/Cuemon.Extensions.Reflection/PackageReleaseNotes.txt (1)</summary><blockquote>

`1-6`: **9.0.9 entry looks good.**

Availability and ALM match suite-wide updates.

</blockquote></details>
<details>
<summary>Directory.Packages.props (1)</summary><blockquote>

`8-11`: **Version bumps look coherent across TFMs.**

The patches align (xUnit runner 3.1.4, Microsoft.Extensions.* 9.0.9, Sqlite 8.0.20/9.0.9, SqlClient 6.1.1). No breaking API surface indicated.



Also applies to: 21-21, 38-38, 45-49, 52-52

</blockquote></details>

</blockquote></details>

</details>

<!-- This is an auto-generated comment by CodeRabbit for review status -->

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 79.86%. Comparing base (e75f0c4) to head (7259d87).
⚠️ Report is 1 commits behind head on main.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #126   +/-   ##
=======================================
  Coverage   79.86%   79.86%           
=======================================
  Files         595      595           
  Lines       18317    18317           
  Branches     1870     1870           
=======================================
  Hits        14629    14629           
  Misses       3618     3618           
  Partials       70       70           

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

[sonarqubecloud]

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud