Bump the analyzers group in /src with 1 update

[dependabot]

Bumps the analyzers group in /src with 1 update: SonarAnalyzer.CSharp.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

9.10

Hello everyone,

We are happy to announce that this version enables the analysis of Razor files (.cshtml and .razor) 🚀.

The feature will be enabled by default and can be configured in the Languages settings, in the next versions of SonarQube / SonarCloud:

Currently, Razor files are not supported in Visual Studio (when using NuGet packages or SonarLint) due to some limitations in the IDE. See dotnet/razor#9108 and this VS issue.

Improvements

• 7942 - [C#, VB.NET] Delete S4818 (Deprecated)
• 7939 - [C#, VB.NET] Delete S4787 (Deprecated)
• 7985 - [C#, VB.NET] Fix S6563: Typo in issue message
• 7954 - Update RSPEC before 9.10 release

False Positive

• 8005 - [C#] Fix S4004 FP: The rule should not raise on the properties decorated with the Parameter attribute

9.9

Hello everyone!

This release is focused on improving the symbolic execution engine to increase the issue accuracy. We also deleted rule S2255 as its deprecation period came to an end.

Deleted Rules:

• 7853 - Delete S2255 (Deprecated).

False Positives

• 7859 - [C#, VB.NET] Fix S2589/S4158: Do not consider a collection not to be empty if a remove method was called.
• 6158 - [C#, VB.NET] Fix S2259 FP: Recognize NotNull results of String methods

False Negatives

• 7910 - [C#] Fix S112 FN: When using null-coalesce operator.
• 7861 - [C#, VB.NET] Fix S4158 FN: If a collection is cleared, mark the collection as empty.
• 7780 - [C#, VB.NET] Fix S2589 FN: Track numerical constant patterns.
• 7704 - [C#, VB.NET] Fix FN S2583/S2589 when Equals is invoked with bool or number parameters.

Other improvements

• Modify rule S3776 - Change the remediation cost from constant to analogous to the excess over the complexity threshold.
• 7825 - Update RSPEC before the 9.9 release.

Commits

• 6c52c54 Update rspec before release (#8018)
• 6196eda S2589: Add repros (#8014)
• 1b1bbc4 Fix S3900 FP: should not consider .razor generated file parameters (#8013)
• 62e9669 S3427: Implement location fix for issues in razor files (#8015)
• 9900363 Fix rules that rely on DiagnosticReportHelper.GetLineNumberToReport for raz...
• 5960e45 Fix S4004 FP: The rule should not raise for properties with Parameter attribu...
• 13f21c1 Document false negative for symbol reporting (#8002)
• 51ee788 Document metric issues found during validation (#8000)
• 3f067c7 Fix the coverage import for .razor files (#7996)
• cb0afe6 UTs: Delete HashSet with deleted rule IDs (#7948)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[codecov]

Codecov Report

Merging #63 (f3e9cde) into master (101a30b) will not change coverage.
The diff coverage is n/a.

@@            Coverage Diff            @@
##            master       #63   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files           26        26           
  Lines          201       201           
  Branches        17        17           
=========================================
  Hits           201       201           

Flag	Coverage Δ
unittests	100.00% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

[piotrzajac]

@dependabot squash and merge

[dependabot]

Dependabot tried to merge this PR, but received the following error from GitHub:

At least 1 approving review is required by reviewers with write access.

[piotrzajac]

@dependabot squash and merge