Skip to content

Bump slopwatch.cmd from 0.2.0 to 0.4.0#40

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/dot-config/slopwatch.cmd-0.4.0
Open

Bump slopwatch.cmd from 0.2.0 to 0.4.0#40
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/dot-config/slopwatch.cmd-0.4.0

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 20, 2026

Updated slopwatch.cmd from 0.2.0 to 0.4.0.

Release notes

Sourced from slopwatch.cmd's releases.

0.4.0

0.4.0 March 2nd 2026

Bug Fixes:

  • --config flag now properly loads custom suppression configurations during analysis - the option was previously documented but not wired into the analysis pipeline (PR #​71)
  • Hook mode now falls back to full file analysis when git status is unavailable (e.g., outside a git repository), instead of silently returning no results (PR #​71)

Documentation:

  • Updated README examples to reflect correct .slopwatch/config.json schema, SW006 severity levels, and local tool installation instructions (PR #​71)

0.3.4 February 18th 2026

New Features:

  • .razor files (Blazor) are now scanned by default - SW001-SW006 detection rules apply to Razor components without requiring explicit -f flags (PR #​64)

0.3.3 January 20th 2026

Bug Fixes:

  • Fixed slopwatch init command to scan .props and .targets files, matching the patterns used by analyze - prevents incomplete baselines when projects have SW005 violations in MSBuild property files (PR #​53, fixes #​52)

Improvements:

  • JSON output now uses relaxed escaping for human-readable characters - apostrophes appear as ' instead of \u0027 in baseline.json and JSON output (PR #​54, fixes #​50)
  • Centralized default file patterns into DefaultPatterns class to prevent drift between commands (PR #​56)

0.3.2 January 17th 2026

Compatibility:

  • SW006 now treats CPM package version overrides (Version and VersionOverride) as errors, preventing inline overrides when CPM is enabled (PR #​48)

0.3.1 January 14th 2026

Bug Fixes:

  • Fixed slopwatch --version and --help returning exit code 2 instead of 0, which was breaking CI/CD pipelines (PR #​44, fixes #​43)
  • SW003 no longer flags catch blocks that log exceptions - logging IS handling for fire-and-forget operations, background jobs, and graceful degradation scenarios (PR #​45, fixes #​42)

Dependency Updates:

  • Bump actions/setup-dotnet from 5.0.1 to 5.1.0 (PR #​39)
  • Bump xunit.runner.visualstudio from 3.0.2 to 3.1.5 (PR #​37)

0.3.0 January 12th 2026

Compatibility:

  • Downgraded to .NET 8 for broader compatibility across environments (PR #​34)

Bug Fixes:

  • MultiEdit tool now properly analyzed in Claude Code hook mode (PR #​32)

Documentation:

  • Improved hook error messages for clarity when working with programming assistants (PR #​35)

0.2.1 January 11th 2026

... (truncated)

0.3.4

0.3.4 February 18th 2026

New Features:

  • .razor files (Blazor) are now scanned by default - SW001-SW006 detection rules apply to Razor components without requiring explicit -f flags (PR #​64)

0.3.3

0.3.3 January 20th 2026

Bug Fixes:

  • Fixed slopwatch init command to scan .props and .targets files, matching the patterns used by analyze - prevents incomplete baselines when projects have SW005 violations in MSBuild property files (PR #​53, fixes #​52)

Improvements:

  • JSON output now uses relaxed escaping for human-readable characters - apostrophes appear as ' instead of \u0027 in baseline.json and JSON output (PR #​54, fixes #​50)
  • Centralized default file patterns into DefaultPatterns class to prevent drift between commands (PR #​56)

0.3.2 January 17th 2026

Compatibility:

  • SW006 now treats CPM package version overrides (Version and VersionOverride) as errors, preventing inline overrides when CPM is enabled (PR #​48)

0.3.1 January 14th 2026

Bug Fixes:

  • Fixed slopwatch --version and --help returning exit code 2 instead of 0, which was breaking CI/CD pipelines (PR #​44, fixes #​43)
  • SW003 no longer flags catch blocks that log exceptions - logging IS handling for fire-and-forget operations, background jobs, and graceful degradation scenarios (PR #​45, fixes #​42)

Dependency Updates:

  • Bump actions/setup-dotnet from 5.0.1 to 5.1.0 (PR #​39)
  • Bump xunit.runner.visualstudio from 3.0.2 to 3.1.5 (PR #​37)

0.3.0 January 12th 2026

Compatibility:

  • Downgraded to .NET 8 for broader compatibility across environments (PR #​34)

Bug Fixes:

  • MultiEdit tool now properly analyzed in Claude Code hook mode (PR #​32)

Documentation:

  • Improved hook error messages for clarity when working with programming assistants (PR #​35)

0.2.1 January 11th 2026

New Features:

  • Added SW006 detection rule for Central Package Management (CPM) version override abuse (PR #​25)
    • Detects VersionOverride attribute on PackageReference (always flagged as it explicitly bypasses CPM)
    • Detects Version attribute on PackageReference when CPM is enabled via Directory.Packages.props or ManagePackageVersionsCentrally setting
    • Context-aware detection that only flags violations when CPM is actually in use
  • MSBuild .props and .targets files now analyzed by default (PR #​24)
    • Enables SW005 rule to detect warning suppression in Directory.Build.props, Directory.Build.targets, and custom MSBuild files
    • Previously required explicit -f flag to analyze these files

0.2.0 January 11th 2026

Performance Improvements:

  • Hook mode now uses git status to analyze only dirty files - near-instant analysis (~340ms vs ~16s on large repos) (PR #​20)
    ... (truncated)

0.3.2

0.3.2 January 17th 2026

Compatibility:

  • SW006 now treats CPM package version overrides (Version and VersionOverride) as errors, preventing inline overrides when CPM is enabled (PR #​48)

0.3.1 January 14th 2026

Bug Fixes:

  • Fixed slopwatch --version and --help returning exit code 2 instead of 0, which was breaking CI/CD pipelines (PR #​44, fixes #​43)
  • SW003 no longer flags catch blocks that log exceptions - logging IS handling for fire-and-forget operations, background jobs, and graceful degradation scenarios (PR #​45, fixes #​42)

Dependency Updates:

  • Bump actions/setup-dotnet from 5.0.1 to 5.1.0 (PR #​39)
  • Bump xunit.runner.visualstudio from 3.0.2 to 3.1.5 (PR #​37)

0.3.0 January 12th 2026

Compatibility:

  • Downgraded to .NET 8 for broader compatibility across environments (PR #​34)

Bug Fixes:

  • MultiEdit tool now properly analyzed in Claude Code hook mode (PR #​32)

Documentation:

  • Improved hook error messages for clarity when working with programming assistants (PR #​35)

0.2.1 January 11th 2026

New Features:

  • Added SW006 detection rule for Central Package Management (CPM) version override abuse (PR #​25)
    • Detects VersionOverride attribute on PackageReference (always flagged as it explicitly bypasses CPM)
    • Detects Version attribute on PackageReference when CPM is enabled via Directory.Packages.props or ManagePackageVersionsCentrally setting
    • Context-aware detection that only flags violations when CPM is actually in use
  • MSBuild .props and .targets files now analyzed by default (PR #​24)
    • Enables SW005 rule to detect warning suppression in Directory.Build.props, Directory.Build.targets, and custom MSBuild files
    • Previously required explicit -f flag to analyze these files

0.2.0 January 11th 2026

Performance Improvements:

  • Hook mode now uses git status to analyze only dirty files - near-instant analysis (~340ms vs ~16s on large repos) (PR #​20)
  • Parallel analysis with Akka.Streams for CI/CD mode - 2.4x speedup on large codebases (6.62s vs 15.89s on Akka.NET's 2225 files) (PR #​22)
  • New --parallel flag to control parallelism (default = processor count, 0 = sequential) (PR #​22)
  • Parallel analysis activates automatically when analyzing >50 files (PR #​22)

Bug Fixes:

  • Fixed bug where hook mode git status optimization wasn't triggering due to CommandLineParser initializing IEnumerable to empty instead of null (PR #​21)
  • Git worktrees now excluded from analysis by default to prevent duplicate scanning (PR #​19)
  • SW003 rule no longer flags legitimate catch(Exception) blocks with actual handling code - only empty catches and logging-only catches are flagged (PR #​18, fixes #​17)

... (truncated)

0.3.1

0.3.1 January 14th 2026

Bug Fixes:

  • Fixed slopwatch --version and --help returning exit code 2 instead of 0, which was breaking CI/CD pipelines (PR #​44, fixes #​43)
  • SW003 no longer flags catch blocks that log exceptions - logging IS handling for fire-and-forget operations, background jobs, and graceful degradation scenarios (PR #​45, fixes #​42)

Dependency Updates:

  • Bump actions/setup-dotnet from 5.0.1 to 5.1.0 (PR #​39)
  • Bump xunit.runner.visualstudio from 3.0.2 to 3.1.5 (PR #​37)

0.3.0 January 12th 2026

Compatibility:

  • Downgraded to .NET 8 for broader compatibility across environments (PR #​34)

Bug Fixes:

  • MultiEdit tool now properly analyzed in Claude Code hook mode (PR #​32)

Documentation:

  • Improved hook error messages for clarity when working with programming assistants (PR #​35)

0.2.1 January 11th 2026

New Features:

  • Added SW006 detection rule for Central Package Management (CPM) version override abuse (PR #​25)
    • Detects VersionOverride attribute on PackageReference (always flagged as it explicitly bypasses CPM)
    • Detects Version attribute on PackageReference when CPM is enabled via Directory.Packages.props or ManagePackageVersionsCentrally setting
    • Context-aware detection that only flags violations when CPM is actually in use
  • MSBuild .props and .targets files now analyzed by default (PR #​24)
    • Enables SW005 rule to detect warning suppression in Directory.Build.props, Directory.Build.targets, and custom MSBuild files
    • Previously required explicit -f flag to analyze these files

0.2.0 January 11th 2026

Performance Improvements:

  • Hook mode now uses git status to analyze only dirty files - near-instant analysis (~340ms vs ~16s on large repos) (PR #​20)
  • Parallel analysis with Akka.Streams for CI/CD mode - 2.4x speedup on large codebases (6.62s vs 15.89s on Akka.NET's 2225 files) (PR #​22)
  • New --parallel flag to control parallelism (default = processor count, 0 = sequential) (PR #​22)
  • Parallel analysis activates automatically when analyzing >50 files (PR #​22)

Bug Fixes:

  • Fixed bug where hook mode git status optimization wasn't triggering due to CommandLineParser initializing IEnumerable to empty instead of null (PR #​21)
  • Git worktrees now excluded from analysis by default to prevent duplicate scanning (PR #​19)
  • SW003 rule no longer flags legitimate catch(Exception) blocks with actual handling code - only empty catches and logging-only catches are flagged (PR #​18, fixes #​17)

Compatibility:

  • Added RollForward=LatestMajor to allow running on newer .NET versions (PR #​16)

0.1.1 January 11th 2026

... (truncated)

0.3.0

0.3.0 January 12th 2026

Compatibility:

  • Downgraded to .NET 8 for broader compatibility across environments (PR #​34)

Bug Fixes:

  • MultiEdit tool now properly analyzed in Claude Code hook mode (PR #​32)

Documentation:

  • Improved hook error messages for clarity when working with programming assistants (PR #​35)

0.2.1 January 11th 2026

New Features:

  • Added SW006 detection rule for Central Package Management (CPM) version override abuse (PR #​25)
    • Detects VersionOverride attribute on PackageReference (always flagged as it explicitly bypasses CPM)
    • Detects Version attribute on PackageReference when CPM is enabled via Directory.Packages.props or ManagePackageVersionsCentrally setting
    • Context-aware detection that only flags violations when CPM is actually in use
  • MSBuild .props and .targets files now analyzed by default (PR #​24)
    • Enables SW005 rule to detect warning suppression in Directory.Build.props, Directory.Build.targets, and custom MSBuild files
    • Previously required explicit -f flag to analyze these files

0.2.0 January 11th 2026

Performance Improvements:

  • Hook mode now uses git status to analyze only dirty files - near-instant analysis (~340ms vs ~16s on large repos) (PR #​20)
  • Parallel analysis with Akka.Streams for CI/CD mode - 2.4x speedup on large codebases (6.62s vs 15.89s on Akka.NET's 2225 files) (PR #​22)
  • New --parallel flag to control parallelism (default = processor count, 0 = sequential) (PR #​22)
  • Parallel analysis activates automatically when analyzing >50 files (PR #​22)

Bug Fixes:

  • Fixed bug where hook mode git status optimization wasn't triggering due to CommandLineParser initializing IEnumerable to empty instead of null (PR #​21)
  • Git worktrees now excluded from analysis by default to prevent duplicate scanning (PR #​19)
  • SW003 rule no longer flags legitimate catch(Exception) blocks with actual handling code - only empty catches and logging-only catches are flagged (PR #​18, fixes #​17)

Compatibility:

  • Added RollForward=LatestMajor to allow running on newer .NET versions (PR #​16)

0.1.1 January 11th 2026

New Features:

  • Claude Code hook integration with --hook flag for exit code 2 on detection (PR #​13)
  • --verbose flag to control baseline loading output visibility (PR #​13)
  • --stats flag for performance metrics and analysis statistics (PR #​14)

Bug Fixes:

  • Fixed default glob pattern handling for CommandLineParser empty IEnumerable issue (PR #​13)
  • Fixed path handling in SuppressionChecker to resolve relative paths correctly (PR #​13)

0.1.0 January 11th 2026

... (truncated)

0.2.1

0.2.1 January 11th 2026

New Features:

  • Added SW006 detection rule for Central Package Management (CPM) version override abuse (PR #​25)
    • Detects VersionOverride attribute on PackageReference (always flagged as it explicitly bypasses CPM)
    • Detects Version attribute on PackageReference when CPM is enabled via Directory.Packages.props or ManagePackageVersionsCentrally setting
    • Context-aware detection that only flags violations when CPM is actually in use
  • MSBuild .props and .targets files now analyzed by default (PR #​24)
    • Enables SW005 rule to detect warning suppression in Directory.Build.props, Directory.Build.targets, and custom MSBuild files
    • Previously required explicit -f flag to analyze these files

0.2.0 January 11th 2026

Performance Improvements:

  • Hook mode now uses git status to analyze only dirty files - near-instant analysis (~340ms vs ~16s on large repos) (PR #​20)
  • Parallel analysis with Akka.Streams for CI/CD mode - 2.4x speedup on large codebases (6.62s vs 15.89s on Akka.NET's 2225 files) (PR #​22)
  • New --parallel flag to control parallelism (default = processor count, 0 = sequential) (PR #​22)
  • Parallel analysis activates automatically when analyzing >50 files (PR #​22)

Bug Fixes:

  • Fixed bug where hook mode git status optimization wasn't triggering due to CommandLineParser initializing IEnumerable to empty instead of null (PR #​21)
  • Git worktrees now excluded from analysis by default to prevent duplicate scanning (PR #​19)
  • SW003 rule no longer flags legitimate catch(Exception) blocks with actual handling code - only empty catches and logging-only catches are flagged (PR #​18, fixes #​17)

Compatibility:

  • Added RollForward=LatestMajor to allow running on newer .NET versions (PR #​16)

0.1.1 January 11th 2026

New Features:

  • Claude Code hook integration with --hook flag for exit code 2 on detection (PR #​13)
  • --verbose flag to control baseline loading output visibility (PR #​13)
  • --stats flag for performance metrics and analysis statistics (PR #​14)

Bug Fixes:

  • Fixed default glob pattern handling for CommandLineParser empty IEnumerable issue (PR #​13)
  • Fixed path handling in SuppressionChecker to resolve relative paths correctly (PR #​13)

0.1.0 January 11th 2026

Initial release of Slopwatch - LLM anti-cheat for .NET.

Features:

  • Detection rules: SW001-SW005 for common LLM reward-hacking patterns
  • Baseline mode to detect only NEW slop in existing codebases
  • slopwatch init command for easy project onboarding
  • JSON output format for CI/CD integration
  • Configurable severity levels and rule customization
  • Multi-level suppression system (attributes, comments, config)

... (truncated)

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

@dependabot
Bump slopwatch.cmd from 0.2.0 to 0.4.0
d192c0c 
---
updated-dependencies:
- dependency-name: slopwatch.cmd
  dependency-version: 0.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Apr 20, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants