build(deps): bump SonarAnalyzer.CSharp from 8.40.0.48530 to 9.0.0.68202

[dependabot]

Bumps SonarAnalyzer.CSharp from 8.40.0.48530 to 9.0.0.68202.

Release notes

Sourced from SonarAnalyzer.CSharp's releases.

9.0

Release 9.0 changes the target framework from net46 to netstandard2.0. Thus the minimal support version is .NET Framework 4.6.2 now.
Thanks to @​Corniel for fixing an FP in S2049.

Improvements

• 7095 - Update RSPEC before 9.0 release
• 6028 - Target netstandard2.0 instead of net46
• 4824 - [C#, VB.NET] SE: Update rule activation to be compatible with .editorconfig

False Positive

• 3400 - [C#] Fix S3900 FP: When parameter reassigned from a method
• 2591 - [C#] Fix S3900 FP: Re-assignment of parameters is ignored
• 6972 - [C#] Fix S3900 FP: Ignore parameters with assigned values
• 5729 - [C#] Fix S3900 FP: Recognize ArgumentNullException.ThrowIfNull()
• 6953 - [C#] Fix S2094 FP: Records which set the base record's properties in their initializer

8.56

Release 8.56 is here and it brings a whole lot of improvements. We implemented S3900 and S3655 for VB.NET and at the same time, we also got improvements to the C# versions of S3900, S3655, S2222, and S2259. Special kudos to @​Corniel who contributed new rule S5856 and several other enhancements.

New Rules

• 6797 - [VB.NET] New Rule S3900 for VB.NET: Arguments of public methods should be validated against Nothing
• 6795 - [VB.NET] New Rule S3655 for VB.NET: Empty nullable value should not be accessed
• 6691 - [C#, VB.NET] New Rule S5856: Regex literals should be valid by @​Corniel

Improvements (S3900, S3655, S2222, and S2259)

• 6794 - [C#] Improve S3655: Support C# 9 and C# 10 syntax
• 6793 - [C#] Improve S3900: Support C# 9 and C# 10 syntax
• 6997 - [C#] Fix S3900: FN and FP
• 7060 - [C#] Fix S3900 FP: Don't raise if parameter is captured
• 2775 - [C#] Fix S3900 FP: is is not considered as null-check
• 2670 - [C#] Fix S3900 FP: with string.IsNullOrEmpty
• 7004 - [C#] Fix S3900: Change parameter dereference check to top-down
• 6682 - [C#] Fix S3655 FP: HasValue checked with Pattern matching
• 4250 - [C#] Fix S2259 FP: Lifted operator results in null value in value type comparison
• 6994 - [C#, VB.NET] Fix S2222: Branch on createdNew parameter on Mutex constructor
• 6840 - [C#, VB.NET] Fix S2259 FP/FN: Do not raise on Nullable members
• 6241 - [C#, VB.NET] Fix S2259 FP: is null check on generic type
• 6930 - [C#, VB.NET] Fix S2259 FN: Auto-Properties don't learn ObjectConstraint
• 6898 - [C#, VB.NET] Fix S2259 FN: Raise on fields and events
• 7048 - [VB.NET] Fix S2259 FP: ValidatedNotNullAttribute in extension method
• 7047 - [VB.NET] Fix S3900 FP: Recognize VB extensions
• 6991 - [VB.NET] Fix S3655 FN: VB implicit conversions

Other improvements

• 6899 - Update RSPEC
• 6910 - Fix S2094 FP: Allow to have empty classes, used as generic parameter
• 6878 - [C#] Fix S1168 FP: Does not respect nullable annotations by @​Corniel
• 6890 - [C#, VB.NET] Fix S1123 FN: The explanation should not be null or whitespace by @​Corniel

... (truncated)

Commits

• 6a345b9 Target netstandard2.0 instead of net46 (#7028)
• 35ab0c9 Bump version to 9.0.0 (#7112)
• 5636b8d Update RSPEC before 9.0 release (#7110)
• 3f5d254 Fix S3900 FP: Re-assignment of parameters is ignored (#7039)
• d43973e S2589: Add FP repro for #7096 (#7100)
• e83f17d SE: Update rule activation to be compatible with .editorconfig (#7087)
• 625a18b SE: Turn off State.CheckConsistency (#7074)
• 0d01a33 Fix S2094 FP: Allow to have empty class with non-empty ctor for base class (#...
• 3a66cb3 Add reproducer for #7088 (#7090)
• 6f7cdab Fix S3900 FP: assigned parameters (#7044)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version. You can also ignore all major, minor, or patch releases for a dependency by adding an ignore condition with the desired update_types to your config file.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.