Bump the nuget group with 3 updates#47
Closed
dependabot[bot] wants to merge 1 commit into
Closed
Conversation
Bumps NSubstitute from 5.3.0 to 6.0.0 Bumps System.IO.Abstractions from 22.1.1 to 22.2.0 Bumps System.IO.Abstractions.TestingHelpers from 22.1.1 to 22.2.0 --- updated-dependencies: - dependency-name: NSubstitute dependency-version: 6.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: nuget - dependency-name: System.IO.Abstractions dependency-version: 22.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget - dependency-name: System.IO.Abstractions.TestingHelpers dependency-version: 22.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget ... Signed-off-by: dependabot[bot] <support@github.com>
FarmLox
added a commit
that referenced
this pull request
Jul 13, 2026
… 6.0.0 Supersedes Dependabot's PR #47, which failed CI with NU1004. Dependabot regenerated only three of the four packages.lock.json files: it left src/InstallerClean.Cli/packages.lock.json recording the old System.IO.Abstractions [22.1.1, ) range for its InstallerClean.Core project reference, so a locked-mode restore of the CLI saw Core's dependencies change under it. It also dropped the System.Diagnostics.EventLog transitive entry from the GUI's lock file. All four locks here are regenerated together with --force-evaluate, so every project's recorded view of Core's dependencies matches Core itself. NSubstitute 6.0.0 enables nullable annotations on its public API, which types the lambda parameter of Arg.Is<T> as nullable. The eight predicates that dereference it now guard on null, so a null argument fails to match and reports as an unmatched call rather than throwing out of the matcher. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
Contributor
Author
|
Looks like these dependencies are no longer updatable, so this is no longer needed. |
FarmLox
added a commit
that referenced
this pull request
Jul 13, 2026
Dependabot's NuGet updater rewrites only some of the four packages.lock.json files when the package it moves lives in InstallerClean.Core, whose dependency ranges the GUI, CLI and Tests locks each record separately. PR #47 left the CLI lock on the superseded System.IO.Abstractions range and dropped a live System.Diagnostics.EventLog transitive entry from the GUI lock, which CI's locked-mode restore rejected with NU1004. The new relock job restores the solution with --force-evaluate on the bot's branch and pushes whatever it missed, so the PR presents the locks CI actually validates. It is a no-op on bumps to a package only one project uses, which is why the earlier ones merged. The job runs on the same windows-2025 image as the CI restore. GitHub does not chain workflow runs off a GITHUB_TOKEN push, so the CI run for the pushed commit arrives in an approval-required state and needs "Approve and run"; that is the price of doing this without granting Actions a personal access token, which for this repository is the wrong trade. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Updated NSubstitute from 5.3.0 to 6.0.0.
Release notes
Sourced from NSubstitute's releases.
6.0.0
ℹ️ No changes from Release Candidate 1.
NSubstitute v6.0.0
From RC1 notes:
ArgMatchers.Matchingpredicate matcher as an alternative toIs(Expression<Predicate<T>>. (.NET6 and above.)Arg.Isnow accepts arg matchers.Full change list
... (truncated)
6.0.0-rc.1
NSubstitute v6.0.0 Release Candidate 1
Due to the large number of changes in this release, we wanted to start with a release candidate to ensure we've correctly captured breaking changes.
ArgMatchers.Matchingpredicate matcher as an alternative toIs(Expression<Predicate<T>>. (.NET6 and above.)Arg.Isnow accepts arg matchers.Full change list
... (truncated)
Commits viewable in compare view.
Updated System.IO.Abstractions from 22.1.1 to 22.2.0.
Release notes
Sourced from System.IO.Abstractions's releases.
22.2.0
What's Changed
... (truncated)
Commits viewable in compare view.
Updated System.IO.Abstractions.TestingHelpers from 22.1.1 to 22.2.0.
Release notes
Sourced from System.IO.Abstractions.TestingHelpers's releases.
22.2.0
What's Changed
... (truncated)
Commits viewable in compare view.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions