dotnet
diff --git a/‎.azuredevops/policies/approvercountpolicy.yml‎
Lines changed: 4 additions & 7 deletions b/‎.azuredevops/policies/approvercountpolicy.yml‎
Lines changed: 4 additions & 7 deletions
diff --git a/‎.github/workflows/codeql.yml‎
Lines changed: 98 additions & 0 deletions b/‎.github/workflows/codeql.yml‎
Lines changed: 98 additions & 0 deletions
diff --git a/‎Directory.Packages.props‎
Lines changed: 9 additions & 13 deletions b/‎Directory.Packages.props‎
Lines changed: 9 additions & 13 deletions
diff --git a/‎eng/pipelines/common/templates/jobs/ci-code-coverage-job.yml‎
Lines changed: 5 additions & 0 deletions b/‎eng/pipelines/common/templates/jobs/ci-code-coverage-job.yml‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎eng/pipelines/common/templates/steps/build-all-configurations-signed-dlls-step.yml‎
Lines changed: 7 additions & 1 deletion b/‎eng/pipelines/common/templates/steps/build-all-configurations-signed-dlls-step.yml‎
Lines changed: 7 additions & 1 deletion
diff --git a/‎eng/pipelines/common/templates/steps/ci-prebuild-step.yml‎
Lines changed: 6 additions & 0 deletions b/‎eng/pipelines/common/templates/steps/ci-prebuild-step.yml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎eng/pipelines/common/templates/steps/ci-project-build-step.yml‎
Lines changed: 5 additions & 0 deletions b/‎eng/pipelines/common/templates/steps/ci-project-build-step.yml‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎eng/pipelines/common/templates/steps/pre-build-step.yml‎
Lines changed: 6 additions & 0 deletions b/‎eng/pipelines/common/templates/steps/pre-build-step.yml‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎eng/pipelines/dotnet-sqlclient-ci-core.yml‎
Lines changed: 24 additions & 14 deletions b/‎eng/pipelines/dotnet-sqlclient-ci-core.yml‎
Lines changed: 24 additions & 14 deletions
@@ -3,10 +3,10 @@
 # that govern how PRs are approved in general.  The settings here dictate how
 # the validator behaves, and it can also prevent PRs from completing.
 #
-# Suggested by Merlinbot (https://sqlclientdrivers.visualstudio.com/ADO.Net/_git/dotnet-sqlclient/pullrequest/4982)
+#  https://eng.ms/docs/coreai/devdiv/one-engineering-system-1es/1es-docs/policy-service/policy-as-code/approver-count-policy-overview
 
 name: approver_count
-description: Approver count policy for dotnet-sqlclient
+description: Approver count policy for dotnet-sqlclient [internal/main]
 resource: repository
 where: 
 configuration:
@@ -22,8 +22,5 @@ configuration:
       resetRejectionsOnSourcePush: false
     blockLastPusherVote: true
     branchNames:
-    - refs/heads/internal/main
-    - refs/heads/internal/release/6.0
-    - refs/heads/internal/release/5.2
-    - refs/heads/internal/release/5.1
-    displayName: dotnet-sqlclient Approver Count Policy
+    - internal/main
+    displayName: dotnet-sqlclient Approver Count Policy [internal/main]
@@ -0,0 +1,98 @@
+# For most projects, this workflow file will not need changing; you simply need
+# to commit it to your repository.
+#
+# You may wish to alter this file to override the set of languages analyzed,
+# or to provide custom queries or build logic.
+#
+# ******** NOTE ********
+# We have attempted to detect the languages in your repository. Please check
+# the `language` matrix defined below to confirm you have the correct set of
+# supported CodeQL languages.
+#
+name: "CodeQL Advanced"
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  schedule:
+    - cron: '33 23 * * 6'
+
+jobs:
+  analyze:
+    name: Analyze (${{ matrix.language }})
+    # Runner size impacts CodeQL analysis time. To learn more, please see:
+    #   - https://gh.io/recommended-hardware-resources-for-running-codeql
+    #   - https://gh.io/supported-runners-and-hardware-resources
+    #   - https://gh.io/using-larger-runners (GitHub.com only)
+    # Consider using larger runners or machines with greater resources for possible analysis time improvements.
+    runs-on: ${{ (matrix.language == 'swift' && 'macos-latest') || 'ubuntu-latest' }}
+    permissions:
+      # required for all workflows
+      security-events: write
+
+      # required to fetch internal or private CodeQL packs
+      packages: read
+
+      # only required for workflows in private repositories
+      actions: read
+      contents: read
+
+    strategy:
+      fail-fast: false
+      matrix:
+        include:
+        - language: csharp
+          build-mode: manual
+        # CodeQL supports the following values keywords for 'language': 'actions', 'c-cpp', 'csharp', 'go', 'java-kotlin', 'javascript-typescript', 'python', 'ruby', 'rust', 'swift'
+        # Use `c-cpp` to analyze code written in C, C++ or both
+        # Use 'java-kotlin' to analyze code written in Java, Kotlin or both
+        # Use 'javascript-typescript' to analyze code written in JavaScript, TypeScript or both
+        # To learn more about changing the languages that are analyzed or customizing the build mode for your analysis,
+        # see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/customizing-your-advanced-setup-for-code-scanning.
+        # If you are analyzing a compiled language, you can modify the 'build-mode' for that language to customize how
+        # your codebase is analyzed, see https://docs.github.com/en/code-security/code-scanning/creating-an-advanced-setup-for-code-scanning/codeql-code-scanning-for-compiled-languages
+    steps:
+    - name: Checkout repository
+      uses: actions/checkout@v4
+
+    - name: Setup .NET Core SDK
+      uses: actions/[email protected]
+      with:
+        # TODO: Update this to .NET 10 once PR #3686 is complete.
+        # TODO: Replace this with global-json-file once PR #3797 is complete.
+        dotnet-version: 9.x
+        dotnet-quality: ga
+        #global-json-file: global.json
+
+    # Initializes the CodeQL tools for scanning.
+    - name: Initialize CodeQL
+      uses: github/codeql-action/init@v4
+      with:
+        languages: ${{ matrix.language }}
+        build-mode: ${{ matrix.build-mode }}
+        # If you wish to specify custom queries, you can do so here or in a config file.
+        # By default, queries listed here will override any specified in a config file.
+        # Prefix the list here with "+" to use these queries and those in the config file.
+
+        # For more details on CodeQL's query packs, refer to: https://docs.github.com/en/code-security/code-scanning/automatically-scanning-your-code-for-vulnerabilities-and-errors/configuring-code-scanning#using-queries-in-ql-packs
+        # queries: security-extended,security-and-quality
+
+    # If the analyze step fails for one of the languages you are analyzing with
+    # "We were unable to automatically build your code", modify the matrix above
+    # to set the build mode to "manual" for that language. Then modify this step
+    # to build your code.
+    # ℹ️ Command-line programs to run using the OS shell.
+    # 📚 See https://docs.github.com/en/actions/using-workflows/workflow-syntax-for-github-actions#jobsjob_idstepsrun
+    - name: Run manual build steps
+      if: matrix.build-mode == 'manual'
+      shell: bash
+      run: |
+        mkdir packages
+        dotnet build src/
+
+    - name: Perform CodeQL Analysis
+      uses: github/codeql-action/analyze@v4
+      with:
+        category: "/language:${{matrix.language}}"
@@ -12,11 +12,11 @@
     <PackageVersion Include="Microsoft.Identity.Client" Version="4.78.0" />
   </ItemGroup>
   <!-- Published - Target Framework Specific Dependencies -->
-  <ItemGroup Condition="'$(TargetFramework)' == 'net9.0'">
+  <ItemGroup Condition="$([MSBuild]::IsTargetFrameworkCompatible('$(TargetFramework)', 'net9.0'))">
     <!-- MDS and AKV -->
     <PackageVersion Include="Microsoft.Extensions.Caching.Memory" Version="9.0.9" />
   </ItemGroup>
-  <ItemGroup Condition="'$(TargetFramework)' != 'net9.0'">
+  <ItemGroup Condition="!$([MSBuild]::IsTargetFrameworkCompatible('$(TargetFramework)', 'net9.0'))">   
     <!-- MDS and AKV -->
     <PackageVersion Include="Microsoft.Extensions.Caching.Memory" Version="8.0.1" />
   </ItemGroup>
@@ -31,7 +31,6 @@
     <PackageVersion Include="Microsoft.SqlServer.SqlManagementObjects" Version="172.76.0" />
     <PackageVersion Include="Microsoft.SqlServer.Types" Version="160.1000.6" />
     <PackageVersion Include="Microsoft.VisualStudio.Azure.Containers.Tools.Targets" Version="1.19.5" />
-    <PackageVersion Include="Microsoft.Win32.Registry" Version="5.0.0" />
     <PackageVersion Include="Newtonsoft.Json" Version="13.0.3" />
     <PackageVersion Include="System.Data.Odbc" Version="9.0.9" />
     <PackageVersion Include="System.Security.Principal.Windows" Version="5.0.0" />
@@ -42,11 +41,11 @@
     <PackageVersion Include="xunit.runner.console" Version="2.9.3" />
   </ItemGroup>
   <!-- Internal - Target Framework Specific Dependencies -->
-  <ItemGroup Condition="'$(TargetFramework)' == 'net9.0'">
+  <ItemGroup Condition="$([MSBuild]::IsTargetFrameworkCompatible('$(TargetFramework)', 'net9.0'))">
     <!-- MDS and AKV Tests -->
     <PackageVersion Include="Microsoft.Extensions.Hosting" Version="9.0.9" />
   </ItemGroup>
-  <ItemGroup Condition="'$(TargetFramework)' != 'net9.0'">
+  <ItemGroup Condition="!$([MSBuild]::IsTargetFrameworkCompatible('$(TargetFramework)', 'net9.0'))">
     <!-- MDS and AKV Tests -->
     <!--
       We can't use a newer major version of this package because it pulls in
@@ -62,20 +61,17 @@
     <PackageVersion Include="Azure.Identity" Version="1.16.0" />
     <PackageVersion Include="Microsoft.IdentityModel.JsonWebTokens" Version="8.14.0" />
     <PackageVersion Include="Microsoft.IdentityModel.Protocols.OpenIdConnect" Version="8.14.0" />
-    <PackageVersion Include="System.Runtime.InteropServices.RuntimeInformation" Version="4.3.0" />
   </ItemGroup>
   <!-- Common Target Framework Specific Dependencies -->
-  <ItemGroup Condition="'$(TargetFramework)' == 'net9.0'">
+  <ItemGroup Condition="$([MSBuild]::IsTargetFrameworkCompatible('$(TargetFramework)', 'net9.0'))">    
     <PackageVersion Include="Microsoft.Bcl.Cryptography" Version="9.0.9" />
     <PackageVersion Include="System.Configuration.ConfigurationManager" Version="9.0.9" />
     <PackageVersion Include="System.Security.Cryptography.Pkcs" Version="9.0.9" />
-    <PackageVersion Include="System.Text.Json" Version="9.0.9" />
   </ItemGroup>
-  <ItemGroup Condition="'$(TargetFramework)' != 'net9.0'">
+  <ItemGroup Condition="!$([MSBuild]::IsTargetFrameworkCompatible('$(TargetFramework)', 'net9.0'))">
     <PackageVersion Include="Microsoft.Bcl.Cryptography" Version="8.0.0" />
     <PackageVersion Include="System.Configuration.ConfigurationManager" Version="8.0.1" />
     <PackageVersion Include="System.Security.Cryptography.Pkcs" Version="8.0.1" />
-    <PackageVersion Include="System.Text.Json" Version="8.0.6" />
   </ItemGroup>
   <!-- .NET Dependencies -->
   <ItemGroup>
@@ -86,10 +82,10 @@
   <ItemGroup>
     <PackageVersion Include="Microsoft.Data.SqlClient.SNI" Version="6.0.2" />
     <PackageVersion Include="System.Buffers" Version="4.6.1" />
-    <PackageVersion Include="System.Data.Common" Version="4.3.0" />
     <PackageVersion Include="System.Diagnostics.DiagnosticSource" Version="8.0.1" />
     <PackageVersion Include="System.Memory" Version="4.6.3" />
-    <PackageVersion Include="System.Text.Encodings.Web" Version="8.0.0" />
+    <PackageVersion Include="System.Runtime.InteropServices.RuntimeInformation" Version="4.3.0" />
+    <PackageVersion Include="System.Text.Json" Version="8.0.6" />
     <PackageVersion Include="System.ValueTuple" Version="4.6.1" />
     <PackageVersion Include="System.Threading.Channels" Version="8.0.0" />
   </ItemGroup>
@@ -101,4 +97,4 @@
   <!-- =================================================================== -->
   <!-- MSS Dependencies -->
   <!-- None -->
-</Project>
+</Project>
@@ -63,6 +63,11 @@ jobs:
       - template: ../steps/ensure-dotnet-version.yml@self
         parameters:
             packageType: sdk
+            version: '10.0'
+
+      - template: ../steps/ensure-dotnet-version.yml@self
+        parameters:
+            packageType: runtime
             version: '9.0'
 
       - pwsh: |
 
@@ -32,9 +32,15 @@ steps:
     retryCount: 5
 
 - task: UseDotNet@2
-  displayName: 'Use .NET 9.x sdk'
+  displayName: 'Use .NET 10.x sdk'
   inputs:
     packageType: sdk
+    version: '10.x'
+
+- task: UseDotNet@2
+  displayName: 'Use .NET 9.x runtime'
+  inputs:
+    packageType: runtime
     version: '9.x'
 
 - task: UseDotNet@2
 
@@ -29,6 +29,12 @@ steps:
   parameters:
     packageType: sdk
     usePreview: false
+    version: 10.0
+
+- template: ensure-dotnet-version.yml
+  parameters:
+    packageType: runtime
+    usePreview: false
     version: 9.0
 
 - template: ensure-dotnet-version.yml
 
@@ -40,6 +40,11 @@ steps:
 - template: ./ensure-dotnet-version.yml@self
   parameters:
       packageType: 'sdk'
+      version: '10.0'
+
+- template: ./ensure-dotnet-version.yml@self
+  parameters:
+      packageType: 'runtime'
       version: '9.0'
 
 - template: ./ensure-dotnet-version.yml@self
 
@@ -7,6 +7,12 @@ steps:
 - template: ./ensure-dotnet-version.yml@self
   parameters:
     packageType: 'sdk'
+    version: '10.0'
+    usePreview: false
+
+- template: ./ensure-dotnet-version.yml@self
+  parameters:
+    packageType: 'runtime'
     version: '9.0'
 
 - template: ./ensure-dotnet-version.yml@self
 
@@ -9,20 +9,28 @@ parameters:
   type: boolean
   default: false
 
+# The target frameworks to build and run tests for on Windows.
+#
+# These are _not_ the target frameworks to build the driver packages for.
+#
 - name: targetFrameworks
   displayName: 'Target Frameworks on Windows'
   type: object
-  default: [net462, net8.0, net9.0]
-
-- name: targetFrameworksLinux
-  displayName: 'Target Frameworks on Non-Windows'
+  default: [net462, net8.0, net9.0, net10.0]
+
+# The target frameworks to build and run tests for on Unix.
+#
+# These are _not_ the target frameworks to build the driver packages for.
+#
+- name: targetFrameworksUnix
+  displayName: 'Target Frameworks on Unix'
   type: object
-  default: [net8.0, net9.0]
+  default: [net8.0, net9.0, net10.0]
 
 - name: netcoreVersionTestUtils
   displayName: 'Netcore Version for Test Utilities'
   type: object
-  default: net9.0
+  default: net10.0
 
 - name: buildPlatforms
   displayName: 'Build Platforms on Windows'
@@ -53,10 +61,12 @@ parameters:
   type: string
   default: https://sqlclientdrivers.pkgs.visualstudio.com/ADO.Net/_packaging/SNIValidation/nuget/v3/index.json
 
+# Frameworks to expect code coverage information for, and to compile into
+# reports.
 - name: codeCovTargetFrameworks
   displayName: 'Code Coverage Target Frameworks'
   type: object
-  default: [net462, net8.0, net9.0]
+  default: [net462, net8.0, net9.0, net10.0]
 
 - name: buildType
   displayName: 'Build Type'
@@ -310,7 +320,7 @@ stages:
         windows_sql_22_named_instance:
           pool: ${{parameters.defaultPoolName }}
           images:
-            Win22_Sql22_named_instance: ADO-MMS22-SQL22-WITH-NAMED-INSTANCE
+            Win22_Sql22_Named_Instance: ADO-MMS22-SQL22-WITH-NAMED-INSTANCE
           TargetFrameworks: ${{parameters.targetFrameworks }}
           netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
           buildPlatforms: ${{parameters.buildPlatforms }}
@@ -334,7 +344,7 @@ stages:
           pool: ${{parameters.defaultPoolName }} 
           images: 
             Win22_Azure_Sql: ADO-MMS22-SQL19
-            win11_Azure_Sql: ADO-CI-Win11
+            Win11_Azure_Sql: ADO-CI-Win11
           TargetFrameworks: ${{parameters.targetFrameworks }}
           netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
           buildPlatforms: ${{parameters.buildPlatforms }}
@@ -366,7 +376,7 @@ stages:
         windows_azure_arm64_sql:
           pool: ADO-CI-PUBLIC-ARM64-1ES-EUS-POOL
           images: 
-            Win22_Azure_ARM64_Sql: ADO-WIN11-ARM64
+            Win11_ARM64_Azure_Sql: ADO-WIN11-ARM64
           TargetFrameworks: ${{parameters.targetFrameworks }}
           netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
           buildPlatforms: ${{parameters.buildPlatforms }}
@@ -431,7 +441,7 @@ stages:
           images:
             Ubuntu20_Sql22: ADO-UB20-SQL22 # drop testing against UB20 image post April 2025
             Ubuntu22_Sql22: ADO-UB22-SQL22
-          TargetFrameworks: ${{parameters.targetFrameworksLinux }}
+          TargetFrameworks: ${{parameters.targetFrameworksUnix }}
           netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
           buildPlatforms: [AnyCPU]
           testSets: ${{parameters.testSets }}
@@ -456,7 +466,7 @@ stages:
           pool: ${{parameters.defaultPoolName }}
           images:
             Ubuntu22_Azure_Sql: ADO-UB22-SQL22
-          TargetFrameworks: ${{parameters.targetFrameworksLinux }}
+          TargetFrameworks: ${{parameters.targetFrameworksUnix }}
           netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
           buildPlatforms: [AnyCPU]
           testSets: ${{parameters.testSets }}
@@ -488,7 +498,7 @@ stages:
             pool: ADO-CI-AE-1ES-Pool
             images:
               Ubuntu20_Enclave_Sql19: ADO-UB22-Sql22
-            TargetFrameworks: ${{parameters.targetFrameworksLinux }}
+            TargetFrameworks: ${{parameters.targetFrameworksUnix }}
             netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
             buildPlatforms: [AnyCPU]
             testSets: [AE]
@@ -518,7 +528,7 @@ stages:
           hostedPool: true
           images:
             MacOSLatest_Sql22: macos-latest
-          TargetFrameworks: ${{parameters.targetFrameworksLinux }}
+          TargetFrameworks: ${{parameters.targetFrameworksUnix }}
           netcoreVersionTestUtils: ${{parameters.netcoreVersionTestUtils }}
           buildPlatforms: [AnyCPU]
           testSets: ${{parameters.testSets }}