Bump transitive Microsoft.Bcl.Memory

[JanKrivanek]

Motivation

Microsoft.ML.Tokenizers.Data.Cl100kBase 2.0.0 transitively depends on Microsoft.Bcl.Memory 9.0.4, which has a vulnerability
There is not a newer stable version - so pinning M.B.M

[Copilot]

Pull request overview

Pins a patched Microsoft.Bcl.Memory version in the skill-validator tool to mitigate a vulnerability introduced via the transitive dependency chain from Microsoft.ML.Tokenizers.Data.Cl100kBase.

Changes:

• Add an explicit PackageReference to Microsoft.Bcl.Memory 9.0.14 in SkillValidator.csproj to override the vulnerable transitive version.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

You can also share your feedback on Copilot code review. Take the survey.

[github-actions]

Skill Validation Results

Skill	Scenario	Quality	Skills Loaded	Overfit	Verdict
csharp-scripts	Test a C# language feature with a script	3.0/5 → 4.0/5 🟢	✅ csharp-scripts; tools: skill, create, edit	🟡 0.32	✅
nuget-trusted-publishing	Set up trusted publishing for a new NuGet library	1.0/5 ⏰ → 3.0/5 ⏰ 🟢	✅ nuget-trusted-publishing; tools: skill, task, bash, create	✅ 0.18	✅
nuget-trusted-publishing	Set up NuGet publishing without mentioning trusted publishing	2.0/5 → 4.0/5 🟢	✅ nuget-trusted-publishing; tools: skill, report_intent, view, task, glob, bash, create	✅ 0.18	✅
nuget-trusted-publishing	Migrate existing workflow from API key to trusted publishing	3.0/5 → 4.0/5 🟢	✅ nuget-trusted-publishing; tools: skill	✅ 0.18	✅
dotnet-pinvoke	Generate LibraryImport declaration from C header (.NET 8+)	3.0/5 → 5.0/5 🟢	✅ dotnet-pinvoke; tools: skill	✅ 0.07	✅
dotnet-pinvoke	Generate LibraryImport declaration from C header (.NET Framework)	4.0/5 → 5.0/5 🟢	✅ dotnet-pinvoke; tools: skill	✅ 0.07	✅
dotnet-trace-collect	High CPU in Kubernetes on Linux (.NET 8)	3.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: report_intent, skill, view	🟡 0.21	✅
dotnet-trace-collect	.NET Framework on Windows without admin privileges	3.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill	🟡 0.21	✅
dotnet-trace-collect	.NET 10 on Linux with root access and native call stacks	1.0/5 → 3.0/5 🟢	✅ dotnet-trace-collect; tools: skill	🟡 0.21	✅
dotnet-trace-collect	Memory leak on Linux (.NET 8)	2.0/5 → 3.0/5 🟢	✅ dotnet-trace-collect; tools: skill	🟡 0.21	✅
dotnet-trace-collect	Slow requests on Windows with PerfView	5.0/5 → 5.0/5	✅ dotnet-trace-collect; tools: skill, report_intent, view	🟡 0.21	❌ [1]
dotnet-trace-collect	Excessive GC on Linux (.NET 8)	3.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill	🟡 0.21	✅
dotnet-trace-collect	Hang or deadlock diagnosis on Linux	3.0/5 → 2.0/5 🔴	✅ dump-collect; tools: skill, glob	🟡 0.21	❌
dotnet-trace-collect	Windows container high CPU with PerfView	1.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill	🟡 0.21	✅
dotnet-trace-collect	Long-running intermittent issue with PerfView triggers	3.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: report_intent, skill, view	🟡 0.21	✅
dotnet-trace-collect	Linux pre-.NET 10 needing native call stacks	2.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: report_intent, skill, view	🟡 0.21	✅
dotnet-trace-collect	Windows modern .NET with admin high CPU	2.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill, report_intent, view	🟡 0.21	✅
dotnet-trace-collect	Memory leak on .NET Framework Windows	3.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: report_intent, skill, view	🟡 0.21	✅
dotnet-trace-collect	Kubernetes with console access prefers console tools	4.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill, report_intent, view, glob	🟡 0.21	❌ [2]
dotnet-trace-collect	Container installation without .NET SDK	3.0/5 → 3.0/5	✅ dotnet-trace-collect; tools: skill	🟡 0.21	✅
dotnet-trace-collect	HTTP 500s from downstream service on Linux (.NET 8)	4.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill, report_intent, view	🟡 0.21	✅
dotnet-trace-collect	Networking timeouts on Windows with admin (.NET 8)	2.0/5 → 5.0/5 🟢	✅ dotnet-trace-collect; tools: skill, report_intent, view	🟡 0.21	✅
dotnet-trace-collect	Assembly loading failure on Linux (.NET 8)	3.0/5 → 4.0/5 🟢	✅ dotnet-trace-collect; tools: skill, report_intent, view	🟡 0.21	✅
microbenchmarking	Investigate runtime upgrade performance impact	1.0/5 ⏰ → 2.0/5 ⏰ 🟢	✅ microbenchmarking; tools: skill, glob	✅ 0.11	✅
clr-activation-debugging	Diagnose unexpected FOD dialog from native build tool	1.0/5 → 5.0/5 🟢	✅ clr-activation-debugging; tools: skill	—	✅
clr-activation-debugging	Diagnose FOD suppressed but activation still failing	1.0/5 → 2.0/5 ⏰ 🟢	✅ clr-activation-debugging; tools: skill	—	✅
clr-activation-debugging	Explain why same binary behaves differently under different launch methods	1.0/5 ⏰ → 5.0/5 🟢	✅ clr-activation-debugging; tools: skill	—	✅
clr-activation-debugging	Analyze healthy managed EXE activation	1.0/5 → 5.0/5 🟢	✅ clr-activation-debugging; tools: skill	—	✅
clr-activation-debugging	Identify multiple activation sequences in a single log	1.0/5 → 5.0/5 🟢	✅ clr-activation-debugging; tools: skill, task, read_agent	—	✅
clr-activation-debugging	Explain useLegacyV2RuntimeActivationPolicy in activation log	2.0/5 → 3.0/5 🟢	✅ clr-activation-debugging; tools: skill	—	✅
clr-activation-debugging	Decline non-CLR-activation issue	1.0/5 ⏰ → 5.0/5 🟢	ℹ️ not activated (expected)	—	✅
analyzing-dotnet-performance	Detects compiled regex startup budget and regex chain allocations	1.0/5 → 5.0/5 🟢	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Detects CurrentCulture comparer and compiled regex budget in inflection rules	1.0/5 → 1.0/5 ⏰	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Finds per-call Dictionary allocation not hoisted to static	1.0/5 → 1.0/5 ⏰	✅ analyzing-dotnet-performance; tools: skill	—	❌ [3]
analyzing-dotnet-performance	Catches compound allocations in recursive number converter with ToLower	1.0/5 → 1.0/5 ⏰	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Finds StringComparison.Ordinal missing and FrozenDictionary opportunities	1.0/5 → 2.0/5 ⏰ 🟢	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Detects Aggregate+Replace chain and struct missing IEquatable	1.0/5 → 1.0/5 ⏰	✅ analyzing-dotnet-performance; tools: skill	—	❌ [4]
analyzing-dotnet-performance	Finds branched Replace chain in format string manipulation	1.0/5 → 1.0/5 ⏰	✅ analyzing-dotnet-performance; tools: skill	—	❌ [5]
analyzing-dotnet-performance	Catches LINQ on hot-path string processing and All(char.IsUpper)	1.0/5 → 5.0/5 🟢	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Detects LINQ pipeline in TimeSpan formatting and collection processing	1.0/5 → 4.0/5 🟢	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Flags Span inconsistencies and compound method chains in truncation library	1.0/5 → 5.0/5 🟢	✅ analyzing-dotnet-performance; tools: skill	—	✅
analyzing-dotnet-performance	Identifies unsealed leaf classes and locale hierarchy patterns	1.0/5 → 1.0/5 ⏰	✅ analyzing-dotnet-performance; tools: skill	—	❌ [6]
android-tombstone-symbolication	Symbolicate .NET frames in an Android tombstone	1.0/5 ⏰ → 5.0/5 🟢	✅ android-tombstone-symbolication; tools: skill, glob, bash	—	✅
android-tombstone-symbolication	Recognize tombstone with no .NET frames	5.0/5 → 5.0/5	✅ android-tombstone-symbolication; tools: skill	—	❌ [7]
android-tombstone-symbolication	Symbolicate CoreCLR frames in an Android tombstone	1.0/5 ⏰ → 3.0/5 🟢	✅ android-tombstone-symbolication; tools: skill, read_bash	—	✅
android-tombstone-symbolication	Recognize NativeAOT tombstone with app binary and libSystem.Native.so	2.0/5 → 4.0/5 🟢	✅ android-tombstone-symbolication; tools: skill	—	✅
android-tombstone-symbolication	Symbolicate multi-thread tombstone	4.0/5 → 4.0/5	✅ android-tombstone-symbolication; tools: skill	—	❌ [8]
android-tombstone-symbolication	Handle .NET frames with no BuildId metadata	5.0/5 → 5.0/5	✅ android-tombstone-symbolication; tools: skill, bash	—	❌ [9]
android-tombstone-symbolication	Symbolicate tombstone with multiple .NET libraries and different BuildIds	1.0/5 ⏰ → 1.0/5 ⏰	✅ android-tombstone-symbolication; tools: skill, read_bash	—	❌ [10]
android-tombstone-symbolication	Reject iOS crash log as wrong format	4.0/5 → 5.0/5 🟢	ℹ️ not activated (expected)	—	✅
dump-collect	Configure automatic crash dumps for CoreCLR app on Linux	5.0/5 → 5.0/5	✅ dump-collect; tools: skill, report_intent, view, glob	🟡 0.27	❌ [11]
dump-collect	Set up NativeAOT crash dumps with createdump in Kubernetes	2.0/5 → 5.0/5 🟢	✅ dump-collect; tools: skill	🟡 0.27	✅
dump-collect	Recover crash dump from macOS NativeAOT without createdump	4.0/5 → 5.0/5 🟢	✅ dump-collect; tools: skill, report_intent, view, glob, bash	🟡 0.27	✅
dump-collect	Configure CoreCLR dump collection in Alpine Docker as non-root	4.0/5 → 4.0/5	✅ dump-collect; tools: skill	🟡 0.27	❌ [12]
dump-collect	Advisory: macOS NativeAOT crash dump recovery steps	3.0/5 → 4.0/5 🟢	✅ dump-collect; tools: skill	🟡 0.27	✅
dump-collect	Advisory: CoreCLR Alpine Docker non-root configuration	1.0/5 ⏰ → 5.0/5 🟢	✅ dump-collect; tools: skill	🟡 0.27	✅
dump-collect	Advisory: NativeAOT Kubernetes dump collection setup	2.0/5 → 5.0/5 🟢	✅ dump-collect; tools: skill	🟡 0.27	✅
dump-collect	Detect runtime and configure crash dumps for unknown .NET app on Linux	4.0/5 → 5.0/5 🟢	✅ dump-collect; tools: skill	🟡 0.27	✅
dump-collect	Decline dump analysis request	1.0/5 ⏰ → 5.0/5 🟢	ℹ️ not activated (expected)	🟡 0.27	✅
optimizing-ef-core-queries	Optimize bulk operations with EF Core 7+ ExecuteUpdate and ExecuteDelete	4.0/5 → 4.0/5	✅ optimizing-ef-core-queries; tools: skill	🟡 0.36	✅
build-parallelism	Analyze build parallelism bottlenecks	1.0/5 ⏰ → 1.0/5 ⏰	✅ build-parallelism; tools: skill, task, glob, edit	✅ 0.14	✅
including-generated-files	Diagnose generated file inclusion failure	3.0/5 → 5.0/5 🟢	✅ including-generated-files; tools: skill	🟡 0.24	✅
msbuild-antipatterns	Review MSBuild files for anti-patterns and style issues	5.0/5 → 5.0/5	✅ msbuild-antipatterns; tools: skill	✅ 0.06	✅
build-perf-baseline	Establish build performance baseline and recommend optimizations	3.0/5 → 2.0/5 ⏰ 🔴	✅ build-perf-baseline; binlog-generation; build-perf-diagnostics; msbuild-antipatterns; tools: skill	🟡 0.38	❌
msbuild-modernization	Modernize legacy project to SDK-style	3.0/5 → 5.0/5 🟢	✅ msbuild-modernization; tools: skill	✅ 0.06	✅
directory-build-organization	Organize build infrastructure for a multi-project repo	3.0/5 → 5.0/5 🟢	✅ directory-build-organization; msbuild-antipatterns; tools: task, bash, skill	🟡 0.21	✅
check-bin-obj-clash	Diagnose bin/obj output path clashes	1.0/5 ⏰ → 1.0/5 ⏰	✅ check-bin-obj-clash; binlog-generation; tools: skill, glob	✅ 0.15	❌ [13]
incremental-build	Analyze incremental build issues	3.0/5 → 4.0/5 🟢	✅ incremental-build; tools: skill	✅ 0.12	✅
eval-performance	Analyze MSBuild evaluation performance issues	4.0/5 → 5.0/5 🟢	✅ eval-performance; tools: skill	✅ 0.13	✅
build-perf-diagnostics	Analyze analyzer performance impact on builds	5.0/5 → 1.0/5 ⏰ 🔴	✅ binlog-generation; build-perf-diagnostics; tools: skill	🟡 0.28	❌
binlog-generation	Build project with /bl flag	1.0/5 → 5.0/5 🟢	✅ binlog-generation; tools: skill	🟡 0.42	✅
binlog-generation	Build with /bl in PowerShell	3.0/5 → 5.0/5 🟢	✅ binlog-generation; tools: skill	🟡 0.42	✅
binlog-generation	Build multiple configurations with unique binlogs	3.0/5 → 5.0/5 🟢	✅ binlog-generation; tools: skill	🟡 0.42	✅
binlog-failure-analysis	Diagnose build failures from binlog only (no source files)	1.0/5 ⏰ → 1.0/5 ⏰	✅ binlog-failure-analysis; tools: skill	✅ 0.05	❌ [14]
dotnet-maui-doctor	Plan macOS MAUI setup with Xcode	3.0/5 → 5.0/5 🟢	✅ dotnet-maui-doctor; tools: skill	✅ 0.20	✅
dotnet-maui-doctor	Plan Linux MAUI environment for Android	2.0/5 → 5.0/5 🟢	✅ dotnet-maui-doctor; tools: skill, view	✅ 0.20	✅
dotnet-maui-doctor	Guardrail against workload update and repair	1.0/5 → 3.0/5 🟢	✅ dotnet-maui-doctor; tools: report_intent, skill	✅ 0.20	✅
dotnet-maui-doctor	Diagnose non-Microsoft JDK causing build failure	2.0/5 → 5.0/5 🟢	✅ dotnet-maui-doctor; tools: skill	✅ 0.20	✅
dotnet-maui-doctor	Plan complete MAUI setup on Windows	3.0/5 → 5.0/5 🟢	✅ dotnet-maui-doctor; tools: skill	✅ 0.20	✅
dotnet-maui-doctor	Prevent incorrect JAVA_HOME configuration	2.0/5 → 5.0/5 🟢	✅ dotnet-maui-doctor; tools: skill	✅ 0.20	✅
dotnet-maui-doctor	Determine required Android SDK packages for specific .NET version	2.0/5 → 4.0/5 🟢	✅ dotnet-maui-doctor; tools: report_intent, skill, view, bash, glob	✅ 0.20	✅
dotnet-maui-doctor	Fix stale MAUI workloads after SDK update	2.0/5 → 4.0/5 🟢	✅ dotnet-maui-doctor; tools: skill	✅ 0.20	✅
technology-selection	ML.NET classification on tabular data	2.0/5 → 5.0/5 🟢	✅ technology-selection; tools: skill	🟡 0.32	✅
technology-selection	LLM integration with MEAI abstraction	1.0/5 → 1.0/5 ⏰	✅ technology-selection; tools: skill	🟡 0.32	✅
technology-selection	Reject LLM for tabular classification	3.0/5 → 4.0/5 ⏰ 🟢	✅ technology-selection; tools: skill	🟡 0.32	❌ [15]
technology-selection	Agentic workflow with guardrails	1.0/5 ⏰ → 2.0/5 ⏰ 🟢	✅ technology-selection; tools: skill, edit, create	🟡 0.32	✅
technology-selection	Natural-language scenario decomposition — RAG chatbot	4.0/5 → 4.0/5	✅ technology-selection; tools: skill	🟡 0.32	❌ [16]
technology-selection	RAG pipeline with vector search	3.0/5 → 1.0/5 ⏰ 🔴	✅ technology-selection; tools: skill	🟡 0.32	❌
migrate-dotnet9-to-dotnet10	Console app with System.Linq.Async, SIGTERM, and BufferedStream	5.0/5 → 5.0/5	✅ migrate-dotnet9-to-dotnet10; tools: skill, view	—	✅
migrate-dotnet9-to-dotnet10	Expression tree code broken by C# 14 span overload resolution	5.0/5 → 5.0/5	✅ migrate-dotnet9-to-dotnet10; tools: report_intent, skill, view, glob	—	❌ [17]
migrate-dotnet9-to-dotnet10	ASP.NET Core app with WebHostBuilder, OpenAPI, and forwarded headers	3.0/5 → 4.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	ASP.NET Core app with OpenAPI transformers using Microsoft.OpenApi v1 APIs	2.0/5 → 3.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill, glob	—	✅
migrate-dotnet9-to-dotnet10	EF Core app with Azure SQL JSON columns and parameterized collections	2.0/5 → 5.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	EF Core app with dynamic ExecuteUpdate and complex types	5.0/5 → 5.0/5	✅ migrate-dotnet9-to-dotnet10; tools: skill, view	—	❌ [18]
migrate-dotnet9-to-dotnet10	SQLite app with DateTimeOffset timezone handling	3.0/5 → 5.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill, glob	—	✅
migrate-dotnet9-to-dotnet10	Worker service with config null array binding and ProviderAlias assembly change	3.0/5 → 5.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	Cryptography app with OpenSSL, X.509, and Rfc2898DeriveBytes	3.0/5 → 4.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	SDK and NuGet obscure tooling changes	3.0/5 ⏰ → 5.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	JSON polymorphism with conflicting property names and XmlSerializer	1.0/5 ⏰ → 5.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	WinForms and WPF desktop app with System.Drawing and DynamicResource	1.0/5 ⏰ → 3.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	✅
migrate-dotnet9-to-dotnet10	Containerized single-file app with P/Invoke and IDispatchEx	4.0/5 → 3.0/5 🔴	✅ migrate-dotnet9-to-dotnet10; tools: skill	—	❌
migrate-dotnet9-to-dotnet10	App using SslStream properties and SystemEvents	5.0/5 → 5.0/5	✅ migrate-dotnet9-to-dotnet10; tools: skill, view	—	❌ [19]
migrate-dotnet9-to-dotnet10	Library with NuGet auditing, transitive deps, and InlineArray	5.0/5 → 4.0/5 🔴	✅ migrate-dotnet9-to-dotnet10; tools: skill, view	—	❌
migrate-dotnet9-to-dotnet10	C# 14 compiler breaking changes — field keyword, extension keyword, disposal	4.0/5 → 5.0/5 🟢	✅ migrate-dotnet9-to-dotnet10; tools: report_intent, skill, view, glob	—	❌ [20]
migrate-dotnet9-to-dotnet10	Blazor WASM app with generic math shift masking and tar operations	5.0/5 → 4.0/5 🔴	✅ migrate-dotnet9-to-dotnet10; tools: skill, view	—	❌
migrate-dotnet8-to-dotnet9	App with empty environment variables, ZIP encoding, and keyed DI services	2.0/5 ⏰ → 4.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: skill, stop_bash	—	✅
migrate-dotnet8-to-dotnet9	C# 13 compiler breaking changes — InlineArray on record, iterator safe context, collection expressions	3.0/5 → 5.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: report_intent, skill, view	—	✅
migrate-dotnet8-to-dotnet9	ASP.NET Core app with DI validation, forwarded headers, and HttpClientFactory casting	3.0/5 → 3.0/5	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob	—	✅
migrate-dotnet8-to-dotnet9	EF Core app with migration patterns and Cosmos DB discriminator	3.0/5 → 5.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob, stop_bash	—	✅
migrate-dotnet8-to-dotnet9	EF Core Cosmos DB app with existing documents and composite id format	3.0/5 → 5.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob, stop_bash	—	✅
migrate-dotnet8-to-dotnet9	App with JsonDocument null deserialization and BinaryFormatter fallback	5.0/5 → 3.0/5 ⏰ 🔴	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob	—	❌
migrate-dotnet8-to-dotnet9	CI pipeline with Terminal Logger parsing and version constraints	1.0/5 ⏰ → 5.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob, edit	—	✅
migrate-dotnet8-to-dotnet9	WinForms app with custom UserControls and PictureBox URL loading	3.0/5 → 4.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob	—	✅
migrate-dotnet8-to-dotnet9	Containerized app with zlib dependency and runtime configuration	4.0/5 → 5.0/5 🟢	✅ migrate-dotnet8-to-dotnet9; tools: skill, bash, stop_bash	—	✅
migrate-dotnet8-to-dotnet9	EF Core Cosmos DB app with discriminator and sync I/O	4.0/5 → 3.0/5 🔴	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob	—	❌
migrate-dotnet8-to-dotnet9	Library with String.Trim span overload, keyed services, and InlineArray	4.0/5 → 3.0/5 🔴	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob, bash, stop_bash	—	❌
migrate-dotnet8-to-dotnet9	Containerized app with env var precedence reversal and zlib removal	5.0/5 → 4.0/5 🔴	✅ migrate-dotnet8-to-dotnet9; tools: skill, glob	—	❌
thread-abort-migration	Worker thread with abort-based cancellation	5.0/5 → 5.0/5	✅ thread-abort-migration; tools: skill	—	✅
thread-abort-migration	Timeout enforcement via Thread.Abort	4.0/5 → 5.0/5 🟢	✅ thread-abort-migration; tools: skill	—	✅
thread-abort-migration	Blocking WaitHandle with Thread.Interrupt	4.0/5 → 3.0/5 🔴	✅ thread-abort-migration; tools: report_intent, skill	—	✅ [21]
thread-abort-migration	ASP.NET Response.End and Response.Redirect with Thread.Abort	4.0/5 ⏰ → 3.0/5 🔴	✅ thread-abort-migration; tools: skill, report_intent, bash	—	✅ [22]
thread-abort-migration	Thread.Join and Thread.Sleep only — should not migrate	3.0/5 → 5.0/5 🟢	⚠️ NOT ACTIVATED	—	✅
migrate-nullable-references	Enable NRT in a small library with mixed nullability	1.0/5 ⏰ → 5.0/5 🟢	✅ migrate-nullable-references; tools: skill, bash, edit	✅ 0.15	✅
migrate-nullable-references	File-by-file migration: only modify the targeted file	5.0/5 → 5.0/5	⚠️ NOT ACTIVATED	✅ 0.15	❌ [23]
migrate-nullable-references	Enable NRT in ASP.NET Core Web API with EF Core	1.0/5 ⏰ → 3.0/5 🟢	✅ migrate-nullable-references; tools: skill, edit, bash	✅ 0.15	✅
dotnet-aot-compat	Make Azure.ResourceManager AOT-compatible	2.0/5 → 1.0/5 ⏰ 🔴	✅ dotnet-aot-compat; tools: skill	✅ 0.14	❌
migrate-dotnet10-to-dotnet11	Console app with compression and TAR operations	1.0/5 → 4.0/5 🟢	✅ migrate-dotnet10-to-dotnet11; tools: skill	✅ 0.04	✅
migrate-dotnet10-to-dotnet11	C# 15 compiler breaking changes — Span safe-context, nameof, with()	3.0/5 → 5.0/5 🟢	✅ migrate-dotnet10-to-dotnet11; tools: skill, report_intent, view	✅ 0.04	✅
migrate-dotnet10-to-dotnet11	EF Core app with Cosmos DB provider using sync APIs	4.0/5 → 4.0/5	✅ migrate-dotnet10-to-dotnet11; tools: skill	✅ 0.04	❌ [24]
migrate-dotnet10-to-dotnet11	Deployment to older hardware with minimum requirement changes	2.0/5 → 5.0/5 🟢	✅ migrate-dotnet10-to-dotnet11; tools: skill, report_intent, view	✅ 0.04	✅
migrate-dotnet10-to-dotnet11	Cryptography app using DSA on macOS	3.0/5 → 4.0/5 🟢	✅ migrate-dotnet10-to-dotnet11; tools: skill, report_intent, view, glob	✅ 0.04	❌ [25]
migrate-dotnet10-to-dotnet11	Basic TFM update with Docker and global.json	4.0/5 → 4.0/5	✅ migrate-dotnet10-to-dotnet11; tools: skill	✅ 0.04	✅
migrate-dotnet10-to-dotnet11	C# 15 dynamic operator and ref readonly delegate issues	2.0/5 → 5.0/5 🟢	✅ migrate-dotnet10-to-dotnet11; tools: report_intent, skill, view	✅ 0.04	✅

[1] Quality unchanged but weighted score is -25.2% due to: judgment, tokens (11838 → 54653), quality, tool calls (0 → 3), time (17.0s → 45.4s)
[2] Quality improved but weighted score is -10.0% due to: tokens (11669 → 92593), tool calls (0 → 5), time (12.3s → 61.9s)
[3] Quality unchanged but weighted score is -3.0% due to: tokens (34914 → 91879), errors (0 → 1), tool calls (3 → 9), time (15.0s → 120.1s)
[4] Quality unchanged but weighted score is -3.0% due to: tokens (34943 → 71478), errors (0 → 1), tool calls (3 → 7), time (46.4s → 120.0s)
[5] Quality unchanged but weighted score is -15.0% due to: tokens (46744 → 93823), errors (0 → 1), tool calls (4 → 9), time (40.1s → 180.0s)
[6] Quality unchanged but weighted score is -12.3% due to: errors (0 → 1), tool calls (3 → 8), time (14.7s → 120.0s), tokens (34937 → 50922)
[7] Quality unchanged but weighted score is -6.0% due to: tokens (24442 → 45139), tool calls (2 → 3)
[8] Quality unchanged but weighted score is -15.0% due to: judgment, quality
[9] Quality unchanged but weighted score is -3.3% due to: tokens (24622 → 46473), tool calls (2 → 6)
[10] Quality unchanged but weighted score is -29.9% due to: quality, judgment
[11] Quality unchanged but weighted score is -25.2% due to: judgment, tokens (12145 → 86705), quality, tool calls (0 → 7), time (19.6s → 60.9s)
[12] Quality unchanged but weighted score is -15.9% due to: judgment, time (46.8s → 103.9s), tokens (59232 → 86955)
[13] Quality unchanged but weighted score is -25.9% due to: judgment, quality, tokens (70018 → 225348), tool calls (10 → 20)
[14] Quality unchanged but weighted score is -25.0% due to: judgment, quality, tokens (510643 → 1029195), tool calls (24 → 39)
[15] Quality improved but weighted score is -9.2% due to: completion (✓ → ✗), tokens (123309 → 389993), errors (0 → 1), time (91.2s → 360.1s), tool calls (15 → 25)
[16] Quality unchanged but weighted score is -7.7% due to: tokens (94918 → 213307), quality, tool calls (10 → 15)
[17] Quality unchanged but weighted score is -5.9% due to: tokens (18866 → 94219), tool calls (0 → 6)
[18] Quality unchanged but weighted score is -4.1% due to: tokens (30104 → 56304), time (28.4s → 60.0s), tool calls (2 → 3)
[19] Quality unchanged but weighted score is -2.3% due to: time (41.7s → 118.1s), tokens (48902 → 55057)
[20] Quality improved but weighted score is -10.0% due to: tokens (14442 → 123074), tool calls (0 → 8), time (67.7s → 179.7s)
[21] Quality dropped but weighted score is +4.8% due to: completion (✗ → ✓), time (79.7s → 63.0s)
[22] Quality dropped but weighted score is +10.5% due to: completion (✗ → ✓), errors (1 → 0), time (120.0s → 62.9s)
[23] Quality unchanged but weighted score is -1.4% due to: tokens (76705 → 105168)
[24] Quality unchanged but weighted score is -21.9% due to: judgment, quality, tokens (62920 → 120404), time (65.7s → 99.2s)
[25] Quality improved but weighted score is -1.8% due to: tokens (12716 → 101180), tool calls (0 → 6)

⏰ timeout — run hit the scenario timeout limit; scoring may be impacted by aborting model execution before it could produce its full output

Model: claude-opus-4.6 | Judge: claude-opus-4.6

Full results