Skip to content

Add migrating-newtonsoft-to-system-text-json skill #200

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
mrsharm wants to merge 7 commits into
base: main
Choose a base branch
from
Open

Add migrating-newtonsoft-to-system-text-json skill #200

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
04a5081
Add migrating-newtonsoft-to-system-text-json skill (+13.8% eval impro…
mrsharm Feb 23, 2026
0a64de0
Remove negative scenario and expand rubric with AllowTrailingCommas, …
mrsharm Feb 25, 2026
a9285a1
Update src/dotnet/skills/migrating-newtonsoft-to-system-text-json/SKI…
mrsharm Feb 25, 2026
4a507df
Update src/dotnet/skills/migrating-newtonsoft-to-system-text-json/SKI…
mrsharm Feb 25, 2026
9773e1c
Update src/dotnet/skills/migrating-newtonsoft-to-system-text-json/SKI…
mrsharm Feb 26, 2026
c88d86e
Merge remote-tracking branch 'upstream/main' into musharm/migrating-n…
mrsharm Mar 4, 2026
2790f37
Merge branch 'musharm/migrating-newtonsoft-to-stj-skill' of https://g…
mrsharm Mar 4, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
249 changes: 249 additions & 0 deletions src/dotnet/skills/migrating-newtonsoft-to-system-text-json/SKILL.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,249 @@
```skill
---
name: migrating-newtonsoft-to-system-text-json
description: Migrate from Newtonsoft.Json to System.Text.Json, handling behavioral differences, custom converters, and common breaking changes. Use when converting a project from Newtonsoft.Json (Json.NET) to the built-in System.Text.Json serializer.
---
Comment on lines +1 to +5
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This SKILL.md is wrapped in a fenced code block (skill ... ), which means the YAML frontmatter and the rest of the content won't be parsed/rendered like other skills in this repo. Existing skills start with raw YAML frontmatter at the top of the file (no code fence). Remove the surrounding code fence so the file begins with --- frontmatter directly.

Copilot uses AI. Check for mistakes.
Comment on lines +1 to +5
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

These files are being added under src/dotnet/..., but the repo's documented layout and CI evaluation workflows expect skills under plugins/<plugin>/skills/<skill>/SKILL.md and scenarios under tests/<plugin>/<skill>/eval.yaml. As-is, the evaluation workflow (and CODEOWNERS folder validation) won't run because it only triggers on plugins/** and tests/**. Consider moving this skill to plugins/dotnet/skills/migrating-newtonsoft-to-system-text-json/ and the eval to tests/dotnet/migrating-newtonsoft-to-system-text-json/.

Copilot uses AI. Check for mistakes.

# Migrating from Newtonsoft.Json to System.Text.Json

## When to Use

- Migrating an existing project from Newtonsoft.Json to System.Text.Json
- Removing the Newtonsoft.Json dependency for performance or AOT compatibility
- Fixing serialization differences after switching to System.Text.Json

## When Not to Use

- The project requires Newtonsoft.Json features that System.Text.Json cannot support (extremely rare edge cases like `$ref/$id` with deep graphs)
- The user is already using System.Text.Json and just needs help with it
- The user explicitly wants to keep Newtonsoft.Json

## Inputs

| Input | Required | Description |
|-------|----------|-------------|
| Code using Newtonsoft.Json | Yes | Models, serialization calls, custom converters |
| .NET version | No | Determines which System.Text.Json features are available |

## Workflow

### Step 1: Understand the critical behavioral differences

**System.Text.Json is NOT a drop-in replacement.** These behaviors differ by default:

| Behavior | Newtonsoft.Json | System.Text.Json | Impact |
Copy link
Member

@JamesNK JamesNK Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

STJ also escapes non-ASCII characters by default. Should recommend using relaxed encoder

|----------|----------------|-------------------|--------|
| **Property naming** | PascalCase by default (as declared) | **PascalCase by default** | Same ✓ (unless you used a custom ContractResolver) |
| **Missing properties** | Ignored silently | Ignored silently | Same ✓ |
| **Extra JSON properties** | Ignored by default | Ignored by default (can opt-in to throw in .NET 8+) | Same ✓ (stricter behavior available via options) |
| **Trailing commas** | Allowed | **Rejected by default** | Parse errors on valid-looking JSON |
| **Comments in JSON** | Allowed | **Rejected by default** | Config files break |
| **Number in string** (`"123"`) | Coerced automatically | **Throws by default** | Deserialization breaks! |
| **Enum serialization** | Numeric by default | Numeric by default | Same ✓, but converter syntax differs |
| **null → non-nullable value type** | Sets to default(T) | Sets to default(T) | Same ✓ (null becomes default(T)) |
| **Case sensitivity** | Case-insensitive | **Case-sensitive by default** | Property matching breaks |
| **Max depth** | 64 | 64 | Same ✓ |
| **Circular references** | `$ref/$id` with PreserveReferencesHandling | `ReferenceHandler.Preserve` (.NET 5+) | API differs |

### Step 2: Configure System.Text.Json to match Newtonsoft.Json behavior

```csharp
// In Program.cs (ASP.NET Core) — configure globally
builder.Services.ConfigureHttpJsonOptions(options =>
{
ConfigureJsonOptions(options.SerializerOptions);
});

// Also configure for controllers if using MVC
builder.Services.AddControllers()
.AddJsonOptions(options =>
{
ConfigureJsonOptions(options.JsonSerializerOptions);
});

static void ConfigureJsonOptions(JsonSerializerOptions options)
{
// Match Newtonsoft.Json default behavior:
options.PropertyNamingPolicy = JsonNamingPolicy.CamelCase; // Newtonsoft default
options.PropertyNameCaseInsensitive = true; // Newtonsoft default
Comment on lines +64 to +68
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The doc contradicts itself on default property naming: Step 1 says both Newtonsoft.Json and System.Text.Json default to PascalCase/as-declared, but Step 2 config sets PropertyNamingPolicy = CamelCase and labels it "Newtonsoft default". Please clarify the distinction (Json.NET library defaults vs ASP.NET Core defaults vs any custom ContractResolver/NamingPolicy) and make the guidance consistent.

Copilot uses AI. Check for mistakes.
options.NumberHandling = JsonNumberHandling.AllowReadingFromString; // Newtonsoft coerces
options.ReadCommentHandling = JsonCommentHandling.Skip; // Newtonsoft allows
Copy link
Member

@GrabYourPitchforks GrabYourPitchforks Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Similarly, this is a potentially dangerous setting and should not be encouraged unless the application has thought through the consequences. We chose not to allow this by default in S.T.J because it could lead to desynced deserialization attacks.

In these attacks, the frontend and the backend disagree on the contents of the payload. This could be because they disagree on where comments start or end, potentially allowing sensitive values to be smuggled through what appears to be an ignorable comment. (For example, Newtonsoft.Json, JSON5, and S.T.J all have different concepts on what "end of line" means for a single-line comment.)

Copy link
Member

@GrabYourPitchforks GrabYourPitchforks Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

To defend against this attack, the application should:

  1. ensure that all deserializers in the system are operating in strict RFC compliance mode with the most restrictive settings (e.g., disallowing duplicate property entries in the payload); or
  2. ensure that all components involved in request handling use the same deserializer library, with the same major version and patch level, to ensure consistent payload processing; or
  3. ensure the frontend deserializes the payload to an object graph, then reserializes that object graph to a new payload before sending it on to the backend, so the backend sees only what the frontend believed the request to contain.

options.AllowTrailingCommas = true; // Newtonsoft allows
options.DefaultIgnoreCondition = JsonIgnoreCondition.WhenWritingNull; // Common Newtonsoft setting

Comment on lines +72 to +73
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

DefaultIgnoreCondition = JsonIgnoreCondition.WhenWritingNull is not Newtonsoft.Json's default (Json.NET includes nulls unless configured). Since this method is labeled "Match Newtonsoft.Json default behavior", consider separating true defaults from optional/common settings (or adjust the wording) so the guidance isn't misleading.

Suggested change
options.DefaultIgnoreCondition = JsonIgnoreCondition.WhenWritingNull; // Common Newtonsoft setting
// Additional commonly used Newtonsoft.Json-like settings (not defaults):
options.DefaultIgnoreCondition = JsonIgnoreCondition.WhenWritingNull; // Common Newtonsoft setting (NullValueHandling.Ignore)

Copilot uses AI. Check for mistakes.
// Enum string serialization (replaces StringEnumConverter)
options.Converters.Add(new JsonStringEnumConverter(JsonNamingPolicy.CamelCase));

// Handle circular references (replaces PreserveReferencesHandling)
options.ReferenceHandler = ReferenceHandler.IgnoreCycles; // or Preserve for $ref/$id
Copy link
Member

@GrabYourPitchforks GrabYourPitchforks Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Setting Preserve significantly increases the attack surface of JSON deserialization. Most call sites do not know how to properly reason about the increased attack surface and could find themselves in a vulnerable state. This is why S.T.J does not support $ref / $id in its default configuration.

It's fine if people want to set this, but they should do it only if they truly need it and have thought through the consequences of setting it. It shouldn't be promoted as a "try it and see if it solves your problem" mechanism. (What happens in practice is that somebody will set it, find that it doesn't solve their problem, then move on to some other diagnostic step without reverting this change.)

Copy link
Member

@GrabYourPitchforks GrabYourPitchforks Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

To defend against this attack, the application should consider what happens if the adversary controls the edges in the object graph, not just the values of the nodes in the graph. For example, if you're deserializing a graph that represents a family tree, what happens if a node sets itself as its own parent? What happens if a node has two children, but both point to the same object in memory? (This last example isn't recursive; it's an example of a graph that has a many:1 relationship between edges and nodes.)

Both examples could violate business logic that the application otherwise tries to uphold. Allowing an untrusted client to control the edges in the graph represents a broader attack surface and involves more subtle reasoning compared to an untrusted client that can only control values within the graph.

}
```

### Step 3: Replace attribute mappings

| Newtonsoft.Json Attribute | System.Text.Json Equivalent |
|--------------------------|----------------------------|
| `[JsonProperty("name")]` | `[JsonPropertyName("name")]` |
| `[JsonIgnore]` | `[JsonIgnore]` (same name, different namespace!) |
| `[JsonProperty(Required = Required.Always)]` | `[JsonRequired]` (.NET 7+) |
| `[JsonProperty(NullValueHandling = NullValueHandling.Ignore)]` | `[JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]` |
| `[JsonProperty(DefaultValueHandling = DefaultValueHandling.Ignore)]` | `[JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingDefault)]` |
| `[JsonConverter(typeof(MyConverter))]` | `[JsonConverter(typeof(MyConverter))]` (different base class!) |
| `[JsonConstructor]` | `[JsonConstructor]` (same name, different namespace) |
| `[JsonExtensionData]` | `[JsonExtensionData]` + must be `Dictionary<string, JsonElement>` (NOT `JToken`) |
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

[JsonExtensionData] doesn't have to be Dictionary<string, JsonElement> only—System.Text.Json also supports extension data on other shapes (e.g., IDictionary<string, object> and, in newer TFMs, JsonNode/JsonObject variants). If the intent is to recommend JsonElement as the closest replacement for JToken, consider rephrasing this as guidance rather than a hard requirement so the doc stays technically correct.

Suggested change
| `[JsonExtensionData]` | `[JsonExtensionData]` + must be `Dictionary<string, JsonElement>` (NOT `JToken`) |
| `[JsonExtensionData]` | `[JsonExtensionData]` + typically use `Dictionary<string, JsonElement>` as closest to `JToken` (other supported shapes are also valid) |

Copilot uses AI. Check for mistakes.

**Regex for finding Newtonsoft attributes:**
```bash
# Find all files using Newtonsoft attributes
grep -rn "using Newtonsoft.Json" --include="*.cs"
grep -rn "\[JsonProperty\|JsonConverter\|JsonIgnore\|JsonConstructor" --include="*.cs"
```

### Step 4: Convert custom JsonConverters

**Newtonsoft converter pattern:**
```csharp
// OLD: Newtonsoft.Json
public class UnixDateTimeConverter : Newtonsoft.Json.JsonConverter<DateTime>
{
public override DateTime ReadJson(JsonReader reader, Type objectType,
DateTime existingValue, bool hasExistingValue, JsonSerializer serializer)
{
var timestamp = (long)reader.Value!;
return DateTimeOffset.FromUnixTimeSeconds(timestamp).DateTime;
}

public override void WriteJson(JsonWriter writer, DateTime value,
JsonSerializer serializer)
{
var timestamp = new DateTimeOffset(value).ToUnixTimeSeconds();
writer.WriteValue(timestamp);
}
}
```

**System.Text.Json converter pattern:**
```csharp
// NEW: System.Text.Json
public class UnixDateTimeConverter : System.Text.Json.Serialization.JsonConverter<DateTime>
{
public override DateTime Read(ref Utf8JsonReader reader, Type typeToConvert,
JsonSerializerOptions options)
{
var timestamp = reader.GetInt64(); // Note: strongly typed reader methods
return DateTimeOffset.FromUnixTimeSeconds(timestamp).DateTime;
}

public override void Write(Utf8JsonWriter writer, DateTime value,
JsonSerializerOptions options)
{
var timestamp = new DateTimeOffset(value).ToUnixTimeSeconds();
writer.WriteNumberValue(timestamp);
}
}
```

**Key differences in converter API:**
- Reader is `ref Utf8JsonReader` (struct, passed by ref) — NOT a class
- Writer is `Utf8JsonWriter` — write methods are `WriteStringValue`, `WriteNumberValue`, `WriteBooleanValue` (typed)
- No `serializer` parameter — use `options` and call `JsonSerializer.Serialize/Deserialize` for nested objects
- For polymorphic deserialization: use `JsonTypeInfo` and `[JsonDerivedType]` (.NET 7+) instead of custom type handling

### Step 5: Replace JToken/JObject/JArray with JsonDocument/JsonElement
Copy link
Member

@JamesNK JamesNK Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think just always recommend JsonNode and friends. It's closer than JsonDocument/JsonElement.


| Newtonsoft.Json | System.Text.Json | Notes |
|----------------|-------------------|-------|
| `JToken.Parse(json)` | `JsonDocument.Parse(json)` | **JsonDocument is IDisposable!** Must wrap in `using` |
| `JObject obj = ...` | `JsonElement obj = doc.RootElement` | JsonElement is a struct (no allocation) |
| `obj["key"]` | `obj.GetProperty("key")` | Throws if missing; use `TryGetProperty` for safe access |
| `obj["key"]?.Value<int>()` | `obj.GetProperty("key").GetInt32()` | Type-specific getters |
| `obj.Add("key", value)` | **Not possible** — JsonElement is read-only | Use `JsonNode` (System.Text.Json.Nodes) for mutable DOM |

**For mutable DOM operations, use JsonNode (NOT JsonDocument):**
```csharp
// Mutable DOM — replaces JObject/JArray mutation patterns
var node = JsonNode.Parse(json)!;
node["newProperty"] = "value"; // Add/set properties
node["nested"] = new JsonObject // Create nested objects
{
["key"] = 42
};
var result = node.ToJsonString(); // Serialize back
```

### Step 6: Handle polymorphic serialization

**Newtonsoft.Json (uses $type discriminator):**
```csharp
var settings = new JsonSerializerSettings
{
TypeNameHandling = TypeNameHandling.Auto // SECURITY RISK!
};
Comment on lines +178 to +181
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This example configures JsonSerializerSettings with TypeNameHandling = TypeNameHandling.Auto, which is a known unsafe pattern when used with untrusted JSON because it lets an attacker control the concrete .NET type to instantiate, enabling gadget-based code execution or data tampering. Even though it is labeled as a security risk, including this as compilable example code may lead readers to copy it into production; consider replacing it with a non-usable anti-pattern illustration or a safer configuration that avoids TypeNameHandling for untrusted data.

Suggested change
var settings = new JsonSerializerSettings
{
TypeNameHandling = TypeNameHandling.Auto // SECURITY RISK!
};
// ❌ Insecure pattern shown for illustration only — DO NOT COPY THIS INTO PRODUCTION CODE.
// The following configuration enables $type-based polymorphic deserialization, which is
// vulnerable when used with untrusted JSON input:
//
// var settings = new JsonSerializerSettings
// {
// TypeNameHandling = TypeNameHandling.Auto
// };

Copilot uses AI. Check for mistakes.
```

**System.Text.Json (.NET 7+ — type discriminators):**
```csharp
[JsonDerivedType(typeof(CreditCardPayment), typeDiscriminator: "credit")]
[JsonDerivedType(typeof(BankTransferPayment), typeDiscriminator: "bank")]
public abstract class Payment
Comment on lines +184 to +188
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The polymorphism section implies System.Text.Json will automatically emit a discriminator for [JsonDerivedType] types. STJ polymorphism requires explicit opt-in/configuration (e.g., JsonPolymorphic / JsonPolymorphismOptions / type-info resolver setup). Consider updating this snippet to show the required opt-in so readers don't assume the attributes alone are sufficient.

Copilot uses AI. Check for mistakes.
{
public decimal Amount { get; set; }
}

public class CreditCardPayment : Payment
{
public string CardNumber { get; set; } = "";
}

// Serializes as: {"$type":"credit","amount":99.99,"cardNumber":"..."}
// Note: System.Text.Json uses "$type" by default (configurable)
```

### Step 7: Update package references

```xml
<!-- Remove from .csproj -->
<PackageReference Include="Newtonsoft.Json" Version="*" />
<PackageReference Include="Microsoft.AspNetCore.Mvc.NewtonsoftJson" Version="*" />

<!-- System.Text.Json is included in the framework — no package needed for .NET 6+ -->
<!-- Only add explicitly if you need a newer version: -->
<!-- <PackageReference Include="System.Text.Json" Version="8.0.0" /> -->
```

**Update using statements:**
```csharp
// Remove:
using Newtonsoft.Json;
using Newtonsoft.Json.Linq;
using Newtonsoft.Json.Serialization;
using Newtonsoft.Json.Converters;

// Add:
using System.Text.Json;
using System.Text.Json.Serialization;
using System.Text.Json.Nodes; // For JsonNode (mutable DOM)
```

## Validation

- [ ] All `using Newtonsoft.Json` references removed
- [ ] All `[JsonProperty]` replaced with `[JsonPropertyName]`
- [ ] Custom converters use `System.Text.Json.Serialization.JsonConverter<T>` base
- [ ] `JObject`/`JToken` replaced with `JsonDocument` (read-only) or `JsonNode` (mutable)
- [ ] API responses match previous JSON format (property casing, null handling)
- [ ] Deserialization handles edge cases: trailing commas, comments, numbers-as-strings
- [ ] No `TypeNameHandling` equivalent (security improvement)
- [ ] `JsonDocument` usages wrapped in `using` statements

## Common Pitfalls

| Pitfall | Solution |
|---------|----------|
| Forgetting `PropertyNameCaseInsensitive = true` | Deserialization silently returns default values for all properties |
| `JsonDocument` not disposed | Memory leak — always `using var doc = JsonDocument.Parse(...)` |
| Using `JsonElement` after `JsonDocument` is disposed | JsonElement is invalid after dispose; clone with `element.Clone()` if needed |
| `[JsonIgnore]` from wrong namespace | Both Newtonsoft and System.Text.Json have `[JsonIgnore]` — wrong `using` = attribute ignored |
| Custom converter reading past the current token | System.Text.Json reader is strict — must read exactly the right tokens |
| `JsonExtensionData` with `Dictionary<string, object>` | Must be `Dictionary<string, JsonElement>` — not `object` or `JToken` |
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This repeats the earlier claim that JsonExtensionData "must" use Dictionary<string, JsonElement> and that Dictionary<string, object> is invalid. System.Text.Json supports extension data on IDictionary<string, object> as well; if the goal is to prevent accidentally keeping JToken, rephrase this pitfall to focus on avoiding Newtonsoft types and explain the tradeoffs between object and JsonElement/JsonNode.

Suggested change
| `JsonExtensionData` with `Dictionary<string, object>` | Must be `Dictionary<string, JsonElement>` — not `object` or `JToken` |
| `JsonExtensionData` containing `JToken`/Newtonsoft types | Avoid `JToken`/`JObject` in extension data; use System.Text.Json types (`Dictionary<string, JsonElement>`/`JsonNode`) or `Dictionary<string, object>` with only CLR values |

Copilot uses AI. Check for mistakes.
```
49 changes: 49 additions & 0 deletions src/dotnet/tests/migrating-newtonsoft-to-system-text-json/eval.yaml
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,49 @@
scenarios:
- name: "Migrate model with Newtonsoft.Json attributes to System.Text.Json"
prompt: |
I'm migrating our ASP.NET Core 8 project from Newtonsoft.Json to System.Text.Json. Here's a model class that uses Newtonsoft attributes and a custom converter. Convert this to System.Text.Json:

Comment on lines +1 to +5
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This eval is being added under src/dotnet/tests/..., but the repo layout and evaluation workflow expect scenarios under tests/<plugin>/<skill>/eval.yaml and only trigger on tests/** (and plugins/**). Placing this under src/ means CI evaluation and CODEOWNERS folder validation won't run for the new scenario. Consider moving to tests/dotnet/migrating-newtonsoft-to-system-text-json/eval.yaml.

Copilot uses AI. Check for mistakes.
```csharp
using Newtonsoft.Json;
using Newtonsoft.Json.Converters;
using Newtonsoft.Json.Linq;

public class Order
{
[JsonProperty("order_id")]
public int Id { get; set; }

[JsonProperty(Required = Required.Always)]
public string CustomerName { get; set; }

[JsonProperty(NullValueHandling = NullValueHandling.Ignore)]
public string? Notes { get; set; }

[JsonConverter(typeof(StringEnumConverter))]
public OrderStatus Status { get; set; }

[JsonExtensionData]
public Dictionary<string, JToken>? AdditionalData { get; set; }
}
```

Also show me how to configure the JSON options globally to match Newtonsoft.Json's default behavior (case insensitivity, trailing commas, number-from-string coercion).
assertions:
- type: "output_contains"
value: "JsonPropertyName"
- type: "output_matches"
pattern: "(JsonIgnore.*WhenWritingNull|JsonIgnoreCondition)"
- type: "output_matches"
pattern: "(PropertyNameCaseInsensitive|CamelCase|PropertyNamingPolicy)"
- type: "output_matches"
pattern: "(JsonElement|JsonNode)"
rubric:
- "Replaced [JsonProperty(\"order_id\")] with [JsonPropertyName(\"order_id\")]"
- "Replaced NullValueHandling.Ignore with [JsonIgnore(Condition = JsonIgnoreCondition.WhenWritingNull)]"
- "Replaced [JsonConverter(typeof(StringEnumConverter))] with System.Text.Json equivalent (JsonStringEnumConverter)"
- "Changed [JsonExtensionData] Dictionary value type from JToken to JsonElement (critical difference!)"
- "Configured PropertyNameCaseInsensitive = true to match Newtonsoft default case-insensitive behavior"
- "Configured AllowTrailingCommas = true and NumberHandling = AllowReadingFromString for Newtonsoft compatibility"
- "Warned about behavioral differences (default PascalCase casing in STJ vs camelCase in Newtonsoft, strict parsing)"
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The rubric's casing note is inconsistent with the skill doc: it expects a warning about "PascalCase in STJ vs camelCase in Newtonsoft". If you want to test casing differences, consider aligning this with the skill's own statements and/or explicitly scoping it to ASP.NET Core defaults vs library defaults to avoid grading correct answers as wrong.

Suggested change
- "Warned about behavioral differences (default PascalCase casing in STJ vs camelCase in Newtonsoft, strict parsing)"
- "Warned about behavioral differences (for example, stricter parsing behavior in System.Text.Json compared to Newtonsoft.Json)"

Copilot uses AI. Check for mistakes.
expect_tools: ["bash"]
Copy link

Copilot AI Mar 4, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

expect_tools: ["bash"] forces the model to make at least one bash tool call or the scenario fails. This prompt is primarily a code-migration explanation and doesn't require shell usage, so this constraint may introduce unnecessary flakiness. Consider removing expect_tools (or only using it when the scenario includes a setup/fixture that actually needs bash).

Suggested change
expect_tools: ["bash"]

Copilot uses AI. Check for mistakes.
timeout: 120
Loading