refactor: consolidate IL decoupling guard, cover AspNetCore codefixer, address review

- Extract duplicated PEReader scan into SharedTestHelpers/RulesDecouplingVerifier
  (linked into all three codefixer test projects)
- Cover the third vulnerable codefixer family: TUnit.AspNetCore.Analyzers gets
  DiagnosticIds consts + IL guard test (same #6157 pattern, was missed)
- Verifier also flags DiagnosticIds type refs so const -> static readonly drift
  fails the test (review feedback)
- Add missing readonly on InstanceTestMethod / MatrixDataSourceAttributeRequired
- Collapse the repeated rationale doc comment to one canonical home

Author: thomhurst

SharedTestHelpers/RulesDecouplingVerifier.cs

@@ -0,0 +1,61 @@
+using System.Collections.Generic;
+using System.IO;
+using System.Reflection;
+using System.Reflection.Metadata;
+using System.Reflection.PortableExecutable;
+
+namespace TUnit.Tests.Shared;
+
+/// <summary>
+/// Verifies that a code fixer assembly carries no IL reference to its analyzer project's
+/// <c>Rules</c> type. Guards against https://github.com/thomhurst/TUnit/issues/6157.
+/// </summary>
+/// <remarks>
+/// Code fixer assemblies ship in the version-agnostic <c>analyzers/dotnet/cs</c> folder while the
+/// analyzer assemblies ship per-Roslyn (<c>analyzers/dotnet/roslyn4.x/cs</c>), and the dependency
+/// resolves at runtime by simple name. Visual Studio cannot unload analyzer assemblies, so after a
+/// package update (or with mixed TUnit versions in one VS session) a new code fixer can bind
+/// against a stale analyzer assembly. Any IL reference to the <c>Rules</c> type — e.g.
+/// <c>Rules.X.Id</c> inside the eagerly-evaluated <c>FixableDiagnosticIds</c> — then throws
+/// <see cref="System.MissingFieldException"/> for rules the stale assembly doesn't have. Code
+/// fixers must use the compile-time-baked <c>DiagnosticIds</c> constants instead, which this
+/// helper enforces at the IL level: a <c>TypeReference</c> to <c>Rules</c> appears for any usage
+/// (field access, <c>typeof</c>, method call), so an empty result proves full decoupling.
+/// <c>DiagnosticIds</c> itself is also scanned — its members must stay <c>const</c>; changing one
+/// to <c>static readonly</c> would silently reintroduce a runtime type reference, which surfaces
+/// here as a <c>TypeReference</c> to <c>DiagnosticIds</c>.
+/// <para>
+/// Linked into each code fixer test project via
+/// <c>&lt;Compile Include="..\SharedTestHelpers\RulesDecouplingVerifier.cs"&gt;</c>.
+/// </para>
+/// </remarks>
+internal static class RulesDecouplingVerifier
+{
+    /// <summary>
+    /// Returns the fully-qualified names of all <c>Rules</c> or <c>DiagnosticIds</c> type
+    /// references in <paramref name="codeFixersAssembly"/> whose namespace is
+    /// <paramref name="rulesNamespace"/>. An empty list means the assembly is fully decoupled.
+    /// </summary>
+    public static List<string> FindRulesTypeReferences(Assembly codeFixersAssembly, string rulesNamespace)
+    {
+        using var stream = File.OpenRead(codeFixersAssembly.Location);
+        using var peReader = new PEReader(stream);
+        var metadata = peReader.GetMetadataReader();
+
+        var rulesReferences = new List<string>();
+
+        foreach (var handle in metadata.TypeReferences)
+        {
+            var typeReference = metadata.GetTypeReference(handle);
+            var name = metadata.GetString(typeReference.Name);
+            var typeNamespace = metadata.GetString(typeReference.Namespace);
+
+            if (name is "Rules" or "DiagnosticIds" && typeNamespace == rulesNamespace)
+            {
+                rulesReferences.Add($"{typeNamespace}.{name}");
+            }
+        }
+
+        return rulesReferences;
+    }
+}

TUnit.Analyzers.CodeFixers/Base/BaseMigrationCodeFixProvider.cs

@@ -15,10 +15,8 @@ public abstract class BaseMigrationCodeFixProvider : CodeFixProvider
     protected abstract string FrameworkName { get; }
 
     /// <summary>
-    /// The fixable diagnostic ID. Implementations MUST return a <see cref="DiagnosticIds"/> constant
-    /// (never <c>Rules.X.Id</c>): VS evaluates <see cref="FixableDiagnosticIds"/> eagerly, and a runtime
-    /// field reference into TUnit.Analyzers can bind against a stale copy already loaded in the IDE,
-    /// throwing MissingFieldException. See https://github.com/thomhurst/TUnit/issues/6157.
+    /// The fixable diagnostic ID. Implementations MUST return a <see cref="DiagnosticIds"/> constant,
+    /// never <c>Rules.X.Id</c> — see <see cref="DiagnosticIds"/> remarks (issue #6157).
     /// </summary>
     protected abstract string DiagnosticId { get; }
 

TUnit.Analyzers.Tests/CodeFixerRulesDecouplingTests.cs

@@ -1,43 +1,19 @@
-using System.Reflection.Metadata;
-using System.Reflection.PortableExecutable;
 using TUnit.Analyzers.CodeFixers;
+using TUnit.Tests.Shared;
 
 namespace TUnit.Analyzers.Tests;
 
 /// <summary>
-/// Guards against https://github.com/thomhurst/TUnit/issues/6157.
-///
-/// TUnit.Analyzers.CodeFixers.dll ships in the version-agnostic analyzers/dotnet/cs folder and
-/// resolves its TUnit.Analyzers dependency at runtime by simple name. Visual Studio cannot unload
-/// analyzer assemblies, so after a package update (or with mixed TUnit versions in one VS session)
-/// the new code fixers can bind against a stale TUnit.Analyzers.dll. Any IL reference to the
-/// <c>Rules</c> type (e.g. <c>Rules.MSTestMigration.Id</c> inside the eagerly-evaluated
-/// <c>FixableDiagnosticIds</c>) then throws MissingFieldException for rules the stale assembly
-/// doesn't have. Code fixers must use the compile-time-baked <c>DiagnosticIds</c> constants instead.
+/// Code fixers must use <c>DiagnosticIds</c> constants, never <c>Rules.X</c> — see
+/// <see cref="RulesDecouplingVerifier"/> for the full rationale (issue #6157).
 /// </summary>
 public class CodeFixerRulesDecouplingTests
 {
     [Test]
     public async Task CodeFixers_Assembly_Has_No_Reference_To_Rules_Type()
     {
-        var assemblyPath = typeof(MSTestMigrationCodeFixProvider).Assembly.Location;
-
-        using var stream = File.OpenRead(assemblyPath);
-        using var peReader = new PEReader(stream);
-        var metadata = peReader.GetMetadataReader();
-
-        var rulesReferences = new List<string>();
-
-        foreach (var handle in metadata.TypeReferences)
-        {
-            var typeReference = metadata.GetTypeReference(handle);
-
-            if (metadata.GetString(typeReference.Name) == "Rules" &&
-                metadata.GetString(typeReference.Namespace) == "TUnit.Analyzers")
-            {
-                rulesReferences.Add($"{metadata.GetString(typeReference.Namespace)}.{metadata.GetString(typeReference.Name)}");
-            }
-        }
+        var rulesReferences = RulesDecouplingVerifier.FindRulesTypeReferences(
+            typeof(MSTestMigrationCodeFixProvider).Assembly, "TUnit.Analyzers");
 
         await TUnit.Assertions.Assert.That(rulesReferences)
             .IsEmpty()

TUnit.Analyzers.Tests/TUnit.Analyzers.Tests.csproj

@@ -47,6 +47,8 @@
           Visible="false" />
     <Compile Include="..\SharedTestHelpers\AnalyzerTestCompatibility.cs"
              Link="Shared\AnalyzerTestCompatibility.cs" />
+    <Compile Include="..\SharedTestHelpers\RulesDecouplingVerifier.cs"
+             Link="Shared\RulesDecouplingVerifier.cs" />
   </ItemGroup>
 
   <!-- Reference the VSTHRD analyzer assembly (Analyzer="false") so its analyzer types are

TUnit.Analyzers/DiagnosticIds.cs

@@ -2,15 +2,12 @@ namespace TUnit.Analyzers;
 
 /// <summary>
 /// Diagnostic ID constants for all TUnit analyzer rules.
+/// Code fix providers MUST reference these constants instead of <c>Rules.X.Id</c> — consts are
+/// baked into the consuming IL at compile time, avoiding a runtime bind against a stale
+/// analyzer assembly in Visual Studio. See https://github.com/thomhurst/TUnit/issues/6157.
+/// Members MUST stay <c>const</c>: <c>static readonly</c> would reintroduce the runtime
+/// reference (and fails the IL regression tests).
 /// </summary>
-/// <remarks>
-/// Code fix providers (TUnit.Analyzers.CodeFixers) MUST reference these constants instead of
-/// <c>Rules.X.Id</c>. Constants are baked into the consuming assembly at compile time, so the
-/// code fixers carry no runtime reference to the <see cref="Rules"/> type. A runtime reference
-/// can bind against a stale TUnit.Analyzers.dll already loaded in Visual Studio (analyzers
-/// cannot be unloaded), throwing <see cref="System.MissingFieldException"/> for newly added
-/// rules. See https://github.com/thomhurst/TUnit/issues/6157.
-/// </remarks>
 public static class DiagnosticIds
 {
     public const string WrongArgumentTypeTestData = "TUnit0001";

TUnit.Analyzers/Rules.cs

@@ -111,10 +111,10 @@ public static class Rules
     public static readonly DiagnosticDescriptor AsyncLocalCallFlowValues =
         CreateDescriptor(DiagnosticIds.AsyncLocalCallFlowValues, UsageCategory, DiagnosticSeverity.Warning);
 
-    public static DiagnosticDescriptor InstanceTestMethod =
+    public static readonly DiagnosticDescriptor InstanceTestMethod =
         CreateDescriptor(DiagnosticIds.InstanceTestMethod, UsageCategory, DiagnosticSeverity.Error);
 
-    public static DiagnosticDescriptor MatrixDataSourceAttributeRequired =
+    public static readonly DiagnosticDescriptor MatrixDataSourceAttributeRequired =
         CreateDescriptor(DiagnosticIds.MatrixDataSourceAttributeRequired, UsageCategory, DiagnosticSeverity.Error);
 
     public static readonly DiagnosticDescriptor TooManyArguments =

TUnit.AspNetCore.Analyzers.CodeFixers/UseTestWebApplicationFactoryCodeFixProvider.cs

@@ -20,7 +20,7 @@ public class UseTestWebApplicationFactoryCodeFixProvider : CodeFixProvider
     private const string TestWebApplicationFactoryNamespace = "TUnit.AspNetCore";
 
     public sealed override ImmutableArray<string> FixableDiagnosticIds { get; } =
-        ImmutableArray.Create(Rules.DirectWebApplicationFactoryInheritance.Id);
+        ImmutableArray.Create(DiagnosticIds.DirectWebApplicationFactoryInheritance);
 
     public sealed override FixAllProvider GetFixAllProvider() => WellKnownFixAllProviders.BatchFixer;
 

TUnit.AspNetCore.Analyzers.Tests/CodeFixerRulesDecouplingTests.cs

@@ -0,0 +1,23 @@
+using TUnit.AspNetCore.Analyzers.CodeFixers;
+using TUnit.Tests.Shared;
+
+namespace TUnit.AspNetCore.Analyzers.Tests;
+
+/// <summary>
+/// Code fixers must use <c>DiagnosticIds</c> constants, never <c>Rules.X</c> — see
+/// <see cref="RulesDecouplingVerifier"/> for the full rationale (issue #6157).
+/// </summary>
+public class CodeFixerRulesDecouplingTests
+{
+    [Test]
+    public async Task CodeFixers_Assembly_Has_No_Reference_To_Rules_Type()
+    {
+        var rulesReferences = RulesDecouplingVerifier.FindRulesTypeReferences(
+            typeof(UseTestWebApplicationFactoryCodeFixProvider).Assembly, "TUnit.AspNetCore.Analyzers");
+
+        await Assert.That(rulesReferences)
+            .IsEmpty()
+            .Because("TUnit.AspNetCore.Analyzers.CodeFixers must not reference TUnit.AspNetCore.Analyzers.Rules at runtime - " +
+                     "use DiagnosticIds constants instead (see issue #6157)");
+    }
+}

TUnit.AspNetCore.Analyzers.Tests/TUnit.AspNetCore.Analyzers.Tests.csproj

@@ -29,6 +29,8 @@
           Visible="false" />
     <Compile Include="..\SharedTestHelpers\AnalyzerTestCompatibility.cs"
              Link="Shared\AnalyzerTestCompatibility.cs" />
+    <Compile Include="..\SharedTestHelpers\RulesDecouplingVerifier.cs"
+             Link="Shared\RulesDecouplingVerifier.cs" />
   </ItemGroup>
 
   <Import Project="..\TestProject.targets" />

TUnit.AspNetCore.Analyzers/DiagnosticIds.cs

@@ -0,0 +1,16 @@
+namespace TUnit.AspNetCore.Analyzers;
+
+/// <summary>
+/// Diagnostic ID constants for all TUnit ASP.NET Core analyzer rules.
+/// Code fix providers MUST reference these constants instead of <c>Rules.X.Id</c> — consts are
+/// baked into the consuming IL at compile time, avoiding a runtime bind against a stale
+/// analyzer assembly in Visual Studio. See https://github.com/thomhurst/TUnit/issues/6157.
+/// Members MUST stay <c>const</c>: <c>static readonly</c> would reintroduce the runtime
+/// reference (and fails the IL regression tests).
+/// </summary>
+public static class DiagnosticIds
+{
+    public const string FactoryAccessedTooEarly = "TUnit0062";
+    public const string GlobalFactoryMemberAccess = "TUnit0063";
+    public const string DirectWebApplicationFactoryInheritance = "TUnit0064";
+}