Skip to content

Update 2 NuGet dependencies #237

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 24, 2025
Merged

Update 2 NuGet dependencies #237

merged 1 commit into from
Nov 24, 2025

Conversation

@nfbot
Copy link
Member

@nfbot nfbot commented Nov 24, 2025
edited by coderabbitai bot
Loading

Bumps nanoFramework.Benchmark from 1.0.109 to 1.0.112
Bumps nanoFramework.Logging from 1.1.160 to 1.1.161

[version update]

⚠️ This is an automated update. ⚠️

Summary by CodeRabbit

  • Chores
    • Updated benchmark and logging package dependencies to the latest versions.

✏️ Tip: You can customize this high-level summary in your review settings.

@nfbot
Update 2 NuGet dependencies
d070ddb 
Bumps nanoFramework.Benchmark from 1.0.109 to 1.0.112</br>Bumps nanoFramework.Logging from 1.1.160 to 1.1.161</br>
[version update]

### ⚠️ This is an automated update. ⚠️
@coderabbitai
Copy link

coderabbitai bot commented Nov 24, 2025
edited
Loading

Walkthrough

This PR updates package dependencies in the benchmark project's lock file. The nanoFramework.Benchmark package is upgraded from version 1.0.109 to 1.0.112, and nanoFramework.Logging is upgraded from version 1.1.160 to 1.1.161, with corresponding contentHash updates.

Changes

Cohort / File(s) Summary
Dependency updates
nanoFramework.System.Math.Benchmark/packages.lock.json		 Updated nanoFramework.Benchmark (1.0.109 → 1.0.112) and nanoFramework.Logging (1.1.160 → 1.1.161) with new resolved versions and contentHashes

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

  • Lock file updates with no code changes; straightforward version and hash verification required

Possibly related PRs

Pre-merge checks and finishing touches

✅ Passed checks (3 passed)
Check name Status Explanation
Description Check ✅ Passed Check skipped - CodeRabbit’s high-level summary is enabled.
Title check ✅ Passed The title 'Update 2 NuGet dependencies' directly and accurately describes the main change, which is updating two NuGet package versions.
Docstring Coverage ✅ Passed No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch nfbot/update-dependencies/356f1f26-80bd-4ad1-83e5-e6d0ae2bb513
📜 Recent review details

Configuration used: CodeRabbit UI

Review profile: CHILL

Plan: Pro

📥 Commits

Reviewing files that changed from the base of the PR and between 3120969 and d070ddb.

⛔ Files ignored due to path filters (2)
  • nanoFramework.System.Math.Benchmark/nanoFramework.System.Math.Benchmark.nfproj is excluded by none and included by none
  • nanoFramework.System.Math.Benchmark/packages.config is excluded by none and included by none
📒 Files selected for processing (1)
  • nanoFramework.System.Math.Benchmark/packages.lock.json (2 hunks)
⏰ Context from checks skipped due to timeout of 90000ms. You can increase the timeout in your CodeRabbit configuration to a maximum of 15 minutes (900000ms). (1)
  • GitHub Check: System.Math (Build_Library)
🔇 Additional comments (2)
nanoFramework.System.Math.Benchmark/packages.lock.json (2)

19-21: No known security vulnerabilities detected for nanoFramework.Logging 1.1.161.

No public security advisories or CVEs were found for nanoFramework.Logging 1.1.161. As a patch release, this update is expected to be backward compatible. If you need additional assurance, consider running a dependency-vulnerability scanner (Snyk, OSS Index, or GitHub Dependabot) and reviewing the project's release notes for any specific changes.

7-9: Verify nanoFramework.Benchmark 1.0.112 using project-level dependency scanning.

No public security advisories or CVEs specifically for nanoFramework.Benchmark version 1.0.112 were found in major vulnerability databases. However, if you need definitive, up-to-date verification for v1.0.112, run a dependency/vulnerability scan (e.g., Snyk, GitHub Dependabot, or Microsoft/NuGet auditing) against your project and the exact package version. Additionally, review the package's release notes to confirm no breaking changes between 1.0.109 and 1.0.112.

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Nov 24, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@nfbot nfbot merged commit 378ddce into main Nov 24, 2025
10 checks passed
@nfbot nfbot deleted the nfbot/update-dependencies/356f1f26-80bd-4ad1-83e5-e6d0ae2bb513 branch November 24, 2025 00:53
@coderabbitai coderabbitai bot mentioned this pull request Nov 27, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

Type: dependencies

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@nfbot