Bump the dependencies group with 5 updates #1625
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
![dependabot[bot]](https://avatars.githubusercontent.com/in/29110?s=60&v=4){kind=small}
Bumps the dependencies group with 5 updates: | Package | From | To | | --- | --- | --- | | [Meziantou.Analyzer](https://github.com/meziantou/Meziantou.Analyzer) | `2.0.188` | `2.0.189` | | [Microsoft.NETFramework.ReferenceAssemblies](https://github.com/Microsoft/dotnet) | `1.0.3` | `1.0.3` | | [Microsoft.Extensions.Logging.Abstractions](https://github.com/dotnet/runtime) | `6.0.0` | `6.0.4` | | [Microsoft.Extensions.Logging.Console](https://github.com/dotnet/runtime) | `9.0.2` | `9.0.3` | | [MSTest.TestFramework](https://github.com/microsoft/testfx) | `3.8.2` | `3.8.3` | Updates `Meziantou.Analyzer` from 2.0.188 to 2.0.189 - [Release notes](https://github.com/meziantou/Meziantou.Analyzer/releases) - [Commits](meziantou/Meziantou.Analyzer@2.0.188...2.0.189) Updates `Microsoft.NETFramework.ReferenceAssemblies` from 1.0.3 to 1.0.3 - [Commits](https://github.com/Microsoft/dotnet/commits) Updates `Microsoft.Extensions.Logging.Abstractions` from 6.0.0 to 6.0.4 - [Release notes](https://github.com/dotnet/runtime/releases) - [Commits](dotnet/runtime@v6.0.0...v6.0.4) Updates `Microsoft.NETFramework.ReferenceAssemblies` from 1.0.3 to 1.0.3 - [Commits](https://github.com/Microsoft/dotnet/commits) Updates `Microsoft.Extensions.Logging.Console` from 9.0.2 to 9.0.3 - [Release notes](https://github.com/dotnet/runtime/releases) - [Commits](dotnet/runtime@v9.0.2...v9.0.3) Updates `Microsoft.NETFramework.ReferenceAssemblies` from 1.0.3 to 1.0.3 - [Commits](https://github.com/Microsoft/dotnet/commits) Updates `MSTest.TestFramework` from 3.8.2 to 3.8.3 - [Release notes](https://github.com/microsoft/testfx/releases) - [Changelog](https://github.com/microsoft/testfx/blob/main/docs/Changelog.md) - [Commits](microsoft/testfx@v3.8.2...v3.8.3) --- updated-dependencies: - dependency-name: Meziantou.Analyzer dependency-version: 2.0.189 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: Microsoft.NETFramework.ReferenceAssemblies dependency-version: 1.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: Microsoft.Extensions.Logging.Abstractions dependency-version: 6.0.4 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: Microsoft.NETFramework.ReferenceAssemblies dependency-version: 1.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: Microsoft.Extensions.Logging.Console dependency-version: 9.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: Microsoft.NETFramework.ReferenceAssemblies dependency-version: 1.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies - dependency-name: MSTest.TestFramework dependency-version: 3.8.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: dependencies ... Signed-off-by: dependabot[bot] <[email protected]>
dependabot
bot
added
.NET
dependabot
bot
requested review from
drieseng,
WojciechNagorski and
Rob-Hague
as code owners
Rob-Hague
reviewed
Apr 5, 2025
| <PackageVersion Include="MSTest.TestAdapter" Version="3.8.2" /> | ||
| <PackageVersion Include="MSTest.TestFramework" Version="3.8.2" /> | ||
| <!-- Should stay on LTS .NET releases. --> | ||
| <PackageVersion Include="Microsoft.Extensions.Logging.Abstractions" Version="8.0.3" /> |
There was a problem hiding this comment.
any objections to just take 8.0.3 and simplify the top-level dependencies slightly?
Rob-Hague
reviewed
Apr 5, 2025
There was a problem hiding this comment.
I found a use for global.json: when checking out old versions/commits then we hit the same problems as in #1624 with building on newer SDKs. Obviously we can't change the past and going forward it is not an issue if building in Debug, but it will still be an issue if building in Release (for e.g. benchmarking or in this case generating an API diff)
Rob-Hague
reviewed
Apr 5, 2025
|
|
||
| - name: Setup WSL2 | ||
| uses: Vampire/setup-wsl@v5 | ||
| uses: Vampire/setup-wsl@f40fb59d850112c9a292b0218bca8271305b9127 # v5.0.0 |
There was a problem hiding this comment.
GH actions security seems to be in the news a lot recently so I pinned the third-party action. AFAIU dependabot can still update it to a new commit and show the diff
mus65
reviewed
Apr 6, 2025
| <PackageVersion Include="MSTest.TestAdapter" Version="3.8.2" /> | ||
| <PackageVersion Include="MSTest.TestFramework" Version="3.8.2" /> | ||
| <!-- Should stay on LTS .NET releases. --> | ||
| <PackageVersion Include="Microsoft.Extensions.Logging.Abstractions" Version="8.0.3" /> |
| <PackageVersion Include="Meziantou.Analyzer" Version="2.0.188" /> | ||
|
|
||
| <!-- Must be kept at version 1.0.0, see https://github.com/sshnet/SSH.NET/pull/1288 for details. --> | ||
| <PackageVersion Include="Microsoft.Bcl.AsyncInterfaces" Version="1.0.0" /> |
There was a problem hiding this comment.
For reference: #1607 (comment)
Rob-Hague
approved these changes
Apr 10, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Bumps the dependencies group with 5 updates:
2.0.1882.0.1891.0.31.0.36.0.06.0.49.0.29.0.33.8.23.8.3Updates
Meziantou.Analyzerfrom 2.0.188 to 2.0.189Release notes
Sourced from Meziantou.Analyzer's releases.
Commits
f23df4eUpdate the report location to be on method name and arguments instead of the ...Updates
Microsoft.NETFramework.ReferenceAssembliesfrom 1.0.3 to 1.0.3Commits
Updates
Microsoft.Extensions.Logging.Abstractionsfrom 6.0.0 to 6.0.4Release notes
Sourced from Microsoft.Extensions.Logging.Abstractions's releases.
Commits
be98e88Merged PR 21497: [release/6.0] MSRC 68590 - newlines in domain literals1cb7505Merge in 'release/6.0' changes2eb4efb[release/6.0] Update dependencies from dotnet/emsdk dotnet/arcade (#66144)4fa64a1Merge in 'release/6.0' changes323bf2d[release/6.0] update expected exception for cases when all requested TLS vers...76a717cImprove SSL platform detection (#64923) (#65054)7a7c54bMerge in 'release/6.0' changesd0c82a3[release/6.0] improve SslStream tests on misconfigured systems (#65024)8d7b562Merge in 'release/6.0' changes19b5f15[release/6.0] Fix catching of generic exception in crossgened shared generic ...Updates
Microsoft.NETFramework.ReferenceAssembliesfrom 1.0.3 to 1.0.3Commits
Updates
Microsoft.Extensions.Logging.Consolefrom 9.0.2 to 9.0.3Release notes
Sourced from Microsoft.Extensions.Logging.Console's releases.
... (truncated)
Commits
831d23eMerge commit 'c97d3a415dfcf6cbf099a31747dad98ce7c13279'c97d3a4Merge pull request #112453 from vseanreesermsft/internal-merge-9.0-2025-02-11...4045f55Disable loc from release/9.0 (#112443)ddae4feMerge commit '80aa709f5d919c6814726788dc6dabe23e79e672' into internal-merge-9...710b9e0Merge commit '9988faba42c61a4e42737b9cb9d5eff75d967af2'9988fab[9.0] Backport labeling workflow changes (#112240)95e028dMerge commit '689f4e9a5a2f8430455266a27921444ec1605eb6'689f4e9Merge pull request #112382 from carlossanlop/release/9.0-staging10a6130Backport pr 111723 to 9.0 staging (#112322)49a1042[release/9.0-staging] Update dependencies from dotnet/arcade (#111483)Updates
Microsoft.NETFramework.ReferenceAssembliesfrom 1.0.3 to 1.0.3Commits
Updates
MSTest.TestFrameworkfrom 3.8.2 to 3.8.3Release notes
Sourced from MSTest.TestFramework's releases.
Changelog
Sourced from MSTest.TestFramework's changelog.
Commits
5354e77[rel/3.8] Remove extra space (#5252)2175165[rel/3.8] Add assembly name (#5247)5f788a5[rel/3.8] Fix TestFailedException outcome not propagating to TestResult outco...e71432a[rel/3.8] Move logic relevant to core MTP out of MTP.MSBuild (#5223)181dd82[rel/3.8] Try out props/targets refactoring (#5219)94c71bf[rel/3.8] Ship props/targets of MSTest.TestFramework and MSTest.TestAdapter i...ccbaf50[rel/3.8] Consider--results-directorybefore configuration (#5204)ec34a47Fix buildb0bebf3Fix merge conflictbc08ddbFix testsDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot mergewill merge this PR after your CI passes on it@dependabot squash and mergewill squash and merge this PR after your CI passes on it@dependabot cancel mergewill cancel a previously requested merge and block automerging@dependabot reopenwill reopen this PR if it is closed@dependabot closewill close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions