Regarding tests. Is it when it doesn’t find any? I had similar issue. My workaround is:

1. Running clean.cmd when switching branches.
2. Using VS2019 - somehow it catches up the tests better.

@JarLob Eh, I can get tests to run in 2017 but not 2019 on master. Clean or not, doesn't really matter. As always, I'm tempted to blame my local environment.

I don't see a failing test in the AppVeyor logs, and tests (in VS2017 at least) all pass?

Tests are fine. It failed uploading artifacts.

Commenting just to say these all look like legitimate issues, appreciate the thorough review.

I’m currently on vacation, so my computer time is a bit circumscribed for another week or so. If I find myself with some downtime I’ll take a whack at fixing these while I’m traveling, otherwise I’ll pick this back up the first week of September.

NP, enjoy vacations!

@JarLob I think I've addressed everything, so it's ready for another review.

The only "marginal" fix is switching to a non-allocating BehaviorApplies. For the cases I've encountered (where there's one condition "clause") the new approach is just better, but this approach will do more passes over arguments than the old approach for conditions with multiple clauses. This feels fine to me, but I wanted to draw attention to it.

Sorry for delay. Looks good!

Excellent and appreciated.

Is there an expected date by which new releases of the Nuget packages are expected? Now that this has landed, I'm just about ready to make Security Code Scan analyzers a part of regular Stack Overflow builds. All that's holding me back is that I'm currently using a local build of Security Code Scan's v2017 branch.

I'll run it on some real projects tomorrow and make a new release. Thank you for your contributions!