chore: Bump the all-dependencies group with 2 updates#227
Conversation
Bumps Microsoft.NET.Test.Sdk from 18.5.1 to 18.7.0 Bumps Verify from 31.12.5 to 31.20.0 --- updated-dependencies: - dependency-name: Microsoft.NET.Test.Sdk dependency-version: 18.7.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: Verify dependency-version: 31.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies - dependency-name: Verify dependency-version: 31.20.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] <support@github.com>
…ll-dependencies-d83092c1d4
|
@claude I believe we've seen this broken build before, here: #218 (comment) Please investigate, and if so, how can we stop dependabot from opening this bump again? Although that said we have just changed the config to semi-annually, so perhaps this one landed just before - please also investigate the timing. |
|
Claude finished @FrankRay78's task in 5m 27s —— View job Investigation complete
Note on scope: I don't have network/ Yes, this build is broken — and here's whyCI on this PR (run 29399373537) fails at the ( Root cause: this PR bumps - <PackageReference Include="Verify" Version="31.12.5" />
+ <PackageReference Include="Verify" Version="31.20.0" />
<PackageReference Include="Verify.Xunit" Version="31.12.5" />
TimingConfirmed from git history — this wasn't the semiannual cron firing early:
GitHub Dependabot triggers an immediate re-check whenever Can dependabot be stopped from doing this again?Not really, and I don't think it should be — the underlying problem is that Dependabot has no concept that The actual safety net is already in place and did its job: nothing auto-merges, and CI failed loudly instead of silently shipping a broken test suite. That's the human-gated design documented in What I'd suggest instead of trying to prevent the PR:
Let me know if you'd like me to push the |
|
@claude Lets push the |
|
Claude finished @FrankRay78's task in 1m 27s —— View job Pushing the
|
Verify.Xunit was left at 31.12.5 while Verify was bumped to 31.20.0, breaking Verifier.Verify(...) at runtime with a MethodAccessException (the two packages ship from the same repo and must move in lockstep). Co-authored-by: Frank Ray <52075808+FrankRay78@users.noreply.github.com>
…ll-dependencies-d83092c1d4
|
@claude The build is still broken. Unless there is a trivial reason, I propose closing this PR and waiting for the semi-annual dependabot bump. There is a good chance this will no longer be happening then. Advise. |
|
Claude finished @FrankRay78's task in 1m 52s —— View job Investigation complete
The build is broken for a different reason than before — and yes, there's a trivial explanationCI on this PR (run 29402614171) now fails at Root cause: This overturns the assumption from the first investigation: Is there a trivial fix?Yes — the correct fix is the opposite direction from what I pushed. Since My recommendationGiven you asked me to advise rather than act:
Let me know if you'd like me to push the branch · |
|
@claude Please attempt the trivial fix, thank you. |
|
Claude finished @FrankRay78's task in 1m 35s —— View job Trivial fix pushed
DonePushed commit
This matches I couldn't run branch · |
…shed version Verify.Xunit has never published 31.20.0 (confirmed via CI NU1102: nearest available version is 31.12.5), so bumping Verify alone broke restore. Co-authored-by: Frank Ray <52075808+FrankRay78@users.noreply.github.com>
Updated Microsoft.NET.Test.Sdk from 18.5.1 to 18.7.0.
Release notes
Sourced from Microsoft.NET.Test.Sdk's releases.
18.7.0
What's Changed
New Contributors
Full Changelog: microsoft/vstest@v18.6.0...v18.7.0
18.6.0
What's Changed
Changes to tests and infra
... (truncated)
Commits viewable in compare view.
Updated Verify from 31.12.5 to 31.20.0.
Release notes
Sourced from Verify's releases.
31.20.0
31.19.1
31.19.0
31.18.0
31.17.0
31.16.3
No issues in this milestone yet.
31.16.2
31.16.1
31.16.0
31.14.0
31.13.4
31.13.3
Commits viewable in compare view.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore <dependency name> major versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)@dependabot ignore <dependency name> minor versionwill close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)@dependabot ignore <dependency name>will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)@dependabot unignore <dependency name>will remove all of the ignore conditions of the specified dependency@dependabot unignore <dependency name> <ignore condition>will remove the ignore condition of the specified dependency and ignore conditions