Bump coverlet.collector from 8.0.1 to 10.0.0

[dependabot]

⚠️ Dependabot is rebasing this PR ⚠️

Rebasing might not happen immediately, so don't worry if this takes some time.

Note: if you make any changes to this PR yourself, they will take precedence over the rebase.

---

Updated coverlet.collector from 8.0.1 to 10.0.0.

Release notes

Sourced from coverlet.collector's releases.

10.0.0

Improvements

• Unique Report Filenames (coverlet.MTP and AzDO) #​1866
• Add --coverlet-file-prefix option for unique report files #​1869
• Introduce .NET 10 support #​1823

Fixed

• Fix [BUG] Wrong branch rate on IAsyncEnumerable for generic type #​1836
• Fix [BUG] Missing Coverage after moving to MTP #​1843
• Fix [BUG] No coverage reported when targeting .NET Framework with 8.0.1 #​1842
• Fix [BUG] Behavior changes between MTP and Legacy (msbuild) #​1878
• Fix [BUG] Coverlet.MTP - Unable to load coverlet.mtp.appsettings.json #​1880
• Fix [BUG] Coverlet.Collector produces empty report when Mediator.SourceGenerator is referenced #​1718 by https://github.com/yusyd
• Fix [BUG] Crash during instrumentation (Methods using LibraryImport/DllImport have no body) #​1762

Maintenance

• Add comprehensive async method tests and documentation for issue #​1864
• Replace Tmds.ExecFunction Package in coverlet.core.coverage.tests #​1833
• Add net9.0 and net10.0 targets #​1822

Diff between 8.0.1 and 10.0.0

Commits viewable in compare view.

[github-actions]

🤖 Automated Major Version Review — APPROVED

Package: coverlet.collector
Ecosystem: NuGet
Version change: 8.0.1 → 10.0.0 (major bump)

Research Summary

• Sources consulted:
  • https://github.com/coverlet-coverage/coverlet/releases — Release notes for v10.0.0: adds .NET 10 support, numerous bug fixes (e.g. fixes "No coverage reported when targeting .NET Framework with 8.0.1", fixes crash during instrumentation with DllImport), no breaking API changes introduced in v10.0.0
  • https://github.com/advisories?query=coverlet.collector — 0 advisories found for coverlet.collector

Breaking Changes Analysis

The only breaking change in this release line was introduced in v8.0.0 (minimum .NET SDK upgraded to 8.0 LTS). This repository already uses .NET 10 (evidenced by Directory.Packages.props and CI configuration), so this breaking change does not apply. No breaking changes were introduced in v10.0.0 itself — the major version bump follows the .NET versioning convention (v10 = .NET 10 support).

Security Check

No security advisories were found for coverlet.collector in the GitHub Advisory Database. This package is a dev/test dependency used only for code coverage collection and does not affect production code.

Decision

✅ This major version update is safe to merge. CI checks pass, the diff contains only Directory.Packages.props (a version file), and no breaking changes affect this repository's usage of the package.

Warning

⚠️ Firewall blocked 1 domain

The following domain was blocked by the firewall during workflow execution:

• security.snyk.io

To allow these domains, add them to the network.allowed list in your workflow frontmatter:

network:
  allowed:
    - defaults
    - "security.snyk.io"

See Network Configuration for more information.

Note

🔒 Integrity filter blocked 1 item

The following item were blocked because they don't meet the GitHub integrity level.

• #145 list_pull_requests: has lower integrity than agent requires. The agent cannot read data with integrity below "approved".

To allow these resources, lower min-integrity in your GitHub frontmatter:

tools:
  github:
    min-integrity: approved  # merged | approved | unapproved | none

Generated by Dependabot Major Version Reviewer · ● 2.6M · ◷