chore(deps): update dependency polly to 8.6.3

[thomhurst]

This PR contains the following updates:

Package	Type	Update	Change
Polly	nuget	patch	8.6.2 -> 8.6.3

---

Release Notes

App-vNext/Polly (Polly)

v8.6.3

Compare Source

What's Changed

• Add release notes configuration by @​martincostello in #​2678
• Simplify release workflow by @​martincostello in #​2679
• Sign-off commits by @​martincostello in #​2694
• Add GitHub sponsorship by @​martincostello in #​2695
• Refactor project dependencies by @​martincostello in #​2696
• Add zizmor by @​martincostello in #​2698
• Update benchmarks by @​martincostello in #​2712
• Reduce async overhead by @​pentp in #​2664
• Update benchmarks by @​martincostello in #​2713

New Contributors

• @​pentp made their first contribution in #​2664

Full Changelog: App-vNext/Polly@8.6.2...8.6.3

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[claude]

Claude finished @thomhurst's task —— View job

---

Pull Request Review: Polly 8.6.2 → 8.6.3 Update

I've completed a comprehensive review of this dependency update covering code quality, potential issues, performance, security, and test coverage.

✅ APPROVED - This is a safe update

Review Summary

Code Quality & Best Practices ✅

• Clean change: Single line update in centrally managed packages file (Directory.Packages.props:60)
• Proper versioning: Patch version update (8.6.2 → 8.6.3) follows semantic versioning
• No breaking changes: Patch versions maintain API compatibility

Compatibility Analysis ✅

TUnit's usage of Polly is minimal and safe:

• Pipeline retry logic: Uses Polly.Retry.AsyncRetryPolicy in TUnit.Pipeline/Modules/TestNugetPackageModule.cs:34
• Test enum arguments: Uses Polly.CircuitBreaker.CircuitState for external enum testing
• Impact: No compatibility concerns - these are stable APIs unchanged in patch releases

Performance Considerations ✅

Positive impact: Polly 8.6.3 includes performance improvements:

• "Reduce async overhead" (PR #2664) by @pentp
• This aligns with TUnit's performance-critical goals per CLAUDE.md

Security Assessment ✅

• No security vulnerabilities: Patch release contains no security fixes
• Dependency supply chain: Polly is a well-maintained Microsoft-ecosystem library
• Minimal attack surface: TUnit uses only retry policies and enum values

Test Coverage ✅

• Existing tests sufficient: Current test suite covers TUnit's Polly usage patterns
• No new test requirements: Patch update doesn't introduce new functionality requiring tests
• Recommended: Run existing test suite to verify no regressions

Recommendation

✅ APPROVE AND MERGE

This is a safe, beneficial update that:

• Improves performance (reduces async overhead)
• Maintains full API compatibility
• Poses no security risks
• Requires no code changes or additional testing

The automated Renovate PR with automerge is appropriate for this type of patch update.

---