Releases: SonarSource/sonar-dotnet
Releases Β· SonarSource/sonar-dotnet
10.20
This release brings 9 precision improvements β 7 false positive fixes and 2 false negative fixes β across rules S1116, S1144, S1210, S1643, S1854, S2365, S3254, S3265, and S127. It also promotes S2068 and S6418 from Security Hotspot to Vulnerability, making them visible directly in the IDE, and removes S3256 from the Sonar Way quality profile.
Changes
- NET-3227 - Remove S3256 from "Sonar Way" quality profile
- NET-3208 - S6418: Rule type changed from Security Hotspot to Vulnerability
- NET-3207 - S2068: Rule type changed from Security Hotspot to Vulnerability
- NET-3206 - Remove links to rules.sonarsource.com
False Positive
- NET-3215 - Fix FP on S127: Should only raise on stop condition variables
- NET-3212 - Fix FP on S3254: Don't raise if the parameter isn't last
- NET-3053 - Fix FP on S1210: Implementing comparable operators for private types
- NET-2984 - Fix FP on S3265: BCL enums with [Flags] not recognized due to metadata resolution
- NET-2976 - Fix FP on S1854: Default value initializations flagged despite exemptions
- NET-2966 - Fix FP on S1144: Constructors in MEF-exported types
- NET-2956 - Fix FP on S1116: Empty loop body with side effects in condition
False Negative
- NET-1261 - Fix FN on S2365: Rule should report on new collection
- NET-1259 - Fix FN on S1643: Concatenation for parameters, fields and properties are not detected
Rule specification
- NET-3246 - Modify Rule S127: Update Description
- NET-3218 - Modify Rule S3265: Add exception for MethodImplAttributes
- NET-3086 - Modify Rule S1116: Add loop exception
Maintenance
- NET-3047 - Update RSPEC before 10.20 release
10.19
10.18
This releases focuses on fixing the false-positives that are raised on code making use of the new features in C# 14.ο»Ώ
Improvement
- NET-2921 - Fix passthrough calculation in ModelBuilder
- NET-2903 - Remove manual extension methods
- NET-2895 - Cleanup handling of ParameterList of primary constructors
Task
- NET-2917 - Update RSPEC before 10.18 release
False Positive
- NET-2898 - Fix S2583/S2589 FP: Extension Members
- NET-2877 - Fix S2225 FP: Extension member
- NET-2832 - Fix S3063 FP: NullConditionalOperator
- NET-2825 - Fix S1144 FP: Partial events
- NET-2821 - Fix S3264 FP: Partial events
- NET-2805 - Fix S1144 FP: S1144 Is confused by Debugger Display attribute
- NET-2748 - Fix S3459 FP: NullConditional Assignment
- NET-2716 - Fix S2325 FP: Field Keyword
- NET-2712 - Fix S2953 FP: Extension block member
- NET-2707 - Fix S3877 FP: Equals method without IEquatable
- NET-2684 - Fix S7039 FP/FN: Null-conditional assignment
- NET-2672 - Fix S3928 FP: Extension block
- NET-2671 - Fix S2970 FP: Null Conditional Assignment
- NET-2668 - Fix S3398 FP: On private methods in C#14 extensions classes
- NET-2644 - Fix S1144 FP: Always raises on private methods in extension block
- NET-2621 - Fix S2325 FP: Incorrectly reports on C# 14 extensions
- NET-2620 - Fix S4545 FP: Extension Methods
- NET-2391 - Fix S1121 FP: Extract (null-forgiving) assignment from expression
- NET-1914 - Fix S3264 FP: when using +=
False Negative
10.17
10.16.2
Rotations of binary signing keys
10.16.1
Rotations of binary signing keys
10.16
10.15
False Positive
- NET-2198 - Fix S1905 FP: Cast of default! expression is required
- NET-2197 - Fix S1905 FP: stackalloc and Span conversions
- NET-1641 - Fix S1905 FP: casting
IEnumerable<string?>toIEnumerable<string> - NET-2157 - Fix S2589 FP: Don't raise an issue after a delegate is invoked
- NET-2073 - Fix S2699 FP: Add support for FsCheck property tests
- NET-1537 - Fix S6964 FP: Don't raise on properties annotated with the BindRequiredAttribute
Improvement
- NET-2112 - Consider ExplodedNodes relevant if a successor would be relevant
- NET-2183 - SE: Set constraint on operation when learning from IsPattern
False Negative
Task
- NET-2208 - Update RSpec before release
10.14
Hey everyone,
This release mostly focuses on mitigating (NET-2196) a performance regression that was introduced in 10.13.
Improvement
- NET-2196 - Fix path algorithm for execution flows to mitigate performance regression
- NET-2177 - Improve how the Symbolic Execution engine handles exception paths
- NET-2135 - Support xUnit V3
- NET-2163 - Provide Interface for other plugins to add rules to VB.NET SonarWay profile
False Negative
Task
- NET-2170 - Update RSPEC before 10.14 release
10.13
Hello everyone,
ο»Ώ
In this release, we've focused on:
- False positive fixes
- Enhancing S2259's secondary locations to provide clearer, step-by-step explanations of null pointer dereferences issues.
False Positives
- NET-2099 - Fix S3885 FP: Do not raise in ResolutionEventHandler
- NET-2023 - Fix S3257 FP: Array with target-typed new
- NET-1646 - Fix S3267 FP: Loops should be simplified with LINQ expressions
- NET-1588 - Fix S1066 FP: Combination of
dynamicandoutshould not raise - NET-882 - Fix S3257 FP: Don't raise for C# 10 and later when there's explicit delegate creation