chore(deps): update dependency verify.tunit to 31.4.0

[thomhurst]

This PR contains the following updates:

Package	Type	Update	Change
Verify.TUnit	nuget	minor	31.3.0 -> 31.4.0

---

Release Notes

VerifyTests/Verify (Verify.TUnit)

v31.4.0

Compare Source

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Enabled.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Renovate Bot.

[claude]

Claude finished @thomhurst's task —— View job

---

PR Review: Dependency Update for verify.tunit

Task List:

• Review the changed file (Directory.Packages.props)
• Analyze the dependency update details
• Assess potential impact and risks
• Check for security or breaking changes
• Provide comprehensive review feedback

---

📋 Review Summary

This PR updates Verify.TUnit from version 31.3.0 to 31.4.0, which is a minor version bump in the Verify testing library ecosystem.

🔍 Analysis

What Changed:

• Single line change in Directory.Packages.props:89
• Verify.TUnit version updated from 31.3.0 → 31.4.0

Dependency Usage:
The Verify.TUnit package is used in several test projects:

• TUnit.Core.SourceGenerator.Tests - For snapshot testing (critical for TUnit's source generation verification)
• TUnit.Assertions.SourceGenerator.Tests - For assertion generator testing
• TUnit.PublicAPI - For API verification tests

Version Consistency Note:
I noticed there's a version inconsistency in the dependency file:

• Verify (base package): 31.3.0 (older)
• Verify.NUnit: 31.4.0 (newer)
• Verify.TUnit: 31.4.0 (newer, this PR)

✅ Positive Aspects

1. Low Risk Update: Minor version bump indicates backward-compatible changes
2. Automated Testing: Renovate bot ensures consistent dependency management
3. Snapshot Testing: Critical for TUnit's source generator verification workflow
4. Proper Central Package Management: Uses Directory.Packages.props for version management

⚠️ Recommendations

1. Version Alignment: Consider updating the base Verify package to 31.4.0 for consistency:

   <PackageVersion Include="Verify" Version="31.4.0" />

2. Test Verification: Ensure snapshot tests still pass, particularly:

   • TUnit.Core.SourceGenerator.Tests (snapshot verification)
   • TUnit.PublicAPI (API surface verification)

3. Release Notes Review: The PR mentions release notes are available but they're empty in the compare link. This is typical for minor releases.

🔒 Security Assessment

• Low Risk: Verify is a well-maintained testing library from the VerifyTests organization
• No Security Concerns: Minor version updates in testing dependencies pose minimal security risk
• Scope Limited: Only affects test projects, not production code

🚀 Performance Considerations

• No Performance Impact: Verify.TUnit is used only in test scenarios
• Build Time: May have minimal impact on test execution time
• CI/CD: Should integrate seamlessly with existing test pipelines

📊 Test Coverage

Since this is a testing library update, the existing test suite should validate the change:

• Snapshot tests will verify source generator output remains consistent
• API tests will ensure public surface area verification works correctly

🎯 Final Recommendation

APPROVE ✅

This is a safe, low-risk dependency update that:

• Follows semantic versioning (minor bump)
• Updates a testing-only dependency
• Is automatically managed by Renovate
• Has automerge enabled (appropriate for this type of change)

The only suggestion is to consider aligning the base Verify package version for consistency, but this doesn't block approval.

---

[claude]

Claude finished @thomhurst's task —— View job

---

PR Review: Dependency Update for verify.tunit

Task List:

• Read the changed file (Directory.Packages.props)
• Review repository guidelines (CLAUDE.md)
• Analyze dependency usage in codebase
• Check for version consistency issues
• Assess security and compatibility impacts
• Provide comprehensive review feedback

---

📋 Review Summary

This PR updates Verify.TUnit from version 31.3.0 to 31.4.0, which is a minor version bump in the Verify testing library ecosystem.

🔍 Analysis

What Changed:

• Single line change in Directory.Packages.props:89
• Verify.TUnit version updated from 31.3.0 → 31.4.0

Dependency Usage:
The Verify.TUnit package is used in several critical test projects:

• TUnit.Core.SourceGenerator.Tests - For snapshot testing (critical for TUnit's source generation verification)
• TUnit.Assertions.SourceGenerator.Tests - For assertion generator testing
• TUnit.PublicAPI - For API verification tests

Version Consistency: ✅ GOOD
All Verify packages are now properly aligned at version 31.4.0:

• Verify: 31.4.0
• Verify.NUnit: 31.4.0
• Verify.TUnit: 31.4.0

✅ Positive Aspects

1. Low Risk Update: Minor version bump indicates backward-compatible changes per semantic versioning
2. Automated Testing: Renovate bot ensures consistent dependency management
3. Critical Infrastructure: Powers TUnit's snapshot testing for source generator verification
4. Proper Central Package Management: Uses Directory.Packages.props for centralized version control
5. Version Alignment: All Verify packages are now consistently versioned

🔒 Security Assessment

• Low Risk: Verify is a well-maintained testing library from the established VerifyTests organization
• No Security Concerns: Minor version updates in testing dependencies pose minimal security risk
• Scope Limited: Only affects test projects, not production runtime code
• Trusted Source: VerifyTests has a strong track record and active maintenance

🚀 Performance Considerations

• No Performance Impact: Verify.TUnit is used only in test scenarios, not runtime
• Build Time: May have minimal impact on test execution time (typically improvements in minor releases)
• CI/CD: Should integrate seamlessly with existing test pipelines

📊 Test Coverage & Repository Guidelines

Per TUnit's CLAUDE.md guidelines:

• ✅ This change doesn't trigger snapshot testing requirements (Rule 2)
• ✅ No dual-mode implementation needed (Rule 1) - dependency update only
• ✅ Verify.TUnit is essential for TUnit's snapshot testing workflow

Critical Test Infrastructure:

• Powers snapshot tests that verify source generator output consistency
• Ensures API surface area verification works correctly
• Essential for TUnit's "dual-mode" testing strategy (source-gen vs reflection)

🎯 Compatibility Assessment

Framework Compatibility:

• ✅ Compatible with .NET 9.0 (TUnit's target framework)
• ✅ Works with Microsoft.Testing.Platform (TUnit's testing infrastructure)
• ✅ No breaking changes expected in minor version bump

Integration Points:

• TUnit's source generator tests rely heavily on Verify for output validation
• API verification tests ensure public surface remains stable
• Critical for TUnit's CI/CD pipeline and quality assurance

📋 Final Recommendation

APPROVE ✅

This is a safe, low-risk dependency update that:

• ✅ Follows semantic versioning (minor bump = backward compatible)
• ✅ Updates a testing-only dependency (no runtime impact)
• ✅ Maintains version consistency across all Verify packages
• ✅ Is automatically managed by Renovate with proper review
• ✅ Has automerge enabled (appropriate for this type of change)
• ✅ Supports TUnit's critical snapshot testing infrastructure

No blocking issues identified. The update aligns with TUnit's development practices and maintains the quality assurance mechanisms that are essential for this testing framework.

---