8000 Backport 6.0 | Nuget Audit Sources by benrr101 · Pull Request #3321 · dotnet/SqlClient · GitHub
[go: up one dir, main page]
Skip to content

Backport 6.0 | Nuget Audit Sources #3321

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
May 2, 2025
Merged

Backport 6.0 | Nuget Audit Sources #3321

merged 1 commit into from
May 2, 2025

Conversation

benrr101
Copy link
Contributor
@benrr101 benrr101 commented May 1, 2025
edited
Loading

Description: This is a simple backport of the Nuget Audit settings from the main branch to the 6.0 branch. There is a slight change from the implementation in main, since technically the <nugetaudit> tag does not support the condition attribute. The solution is to move it to its own property group. This eliminates an IDE warning when editing the file in an IDE.

Reminder that the reason for disabling auditing on official builds is that the official builds are only allowed to access central feed services (ie, ADO artifacts). The nuget audit by default uses nuget.org. Accessing nuget.org from an official build causes the S360 errors.

Testing: Everything still builds locally as expected. I will kick off an official build against this branch to ensure it does not raise a S360 error.
https://sqlclientdrivers.visualstudio.com/ADO.Net/_build/results?buildId=114573&view=results

@benrr101 benrr101 added the Area\Engineering Issues that are targeted for changes in the 'eng' folder or build systems. label May 1, 2025
@benrr101 benrr101 requested a review from a team May 1, 2025 20:59
@benrr101 benrr101 force-pushed the dev/russellben/6.0-audit-flag branch from d60c4cb to e74434a Compare May 1, 2025 21:40
@codecov Codecov
Copy link
codecov bot commented May 2, 2025
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 72.60%. Comparing base (e1eeee0) to head (e74434a).
Report is 4 commits behind head on release/6.0.

Additional details and impacted files 
@@               Coverage Diff               @@
##           release/6.0    #3321      +/-   ##
===============================================
- Coverage        72.75%   72.60%   -0.16%     
===============================================
  Files              285      285              
  Lines            59162    59165       +3     
===============================================
- Hits             43045    42954      -91     
- Misses           16117    16211      +94
Flag Coverage Δ
addons 92.58% <ø> (ø)
netcore 75.39% <ø> (-0.14%) ⬇️
netfx 71.02% <ø> (-0.11%) ⬇️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

@cheenamalhotra cheenamalhotra merged commit 7084ca4 into release/6.0 May 2, 2025
129 checks passed
@cheenamalhotra cheenamalhotra deleted the dev/russellben/6.0-audit-flag branch May 2, 2025 22:15
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@cheenamalhotra cheenamalhotra cheenamalhotra approved these changes

Assignees
No one assigned
Labels
Area\Engineering Issues that are targeted for changes in the 'eng' folder or build systems.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@benrr101 @cheenamalhotra
0