Bump Microsoft.VisualStudio.Composition from 17.1.20 to 17.4.16

[dependabot]

Bumps Microsoft.VisualStudio.Composition from 17.1.20 to 17.4.16.

Release notes

Sourced from Microsoft.VisualStudio.Composition's releases.

v17.4.16

What's Changed

• Avoid func/capture allocations for non-lazy items by @​davkean in microsoft/vs-mef#314
• Use ordinal comparisons by @​davkean in microsoft/vs-mef#327
• Handle 4-integer package versions in InsertConfigValues.ps1 by @​matteo-prosperi in microsoft/vs-mef#329
• Override MethodRef.ToString() for better error messages by @​AArnott in microsoft/vs-mef#330
• Cache assembly name retrieval by @​davkean in microsoft/vs-mef#328
• Enable CodeQL by @​matteo-prosperi in microsoft/vs-mef#331
• Increase Windows job timeout to 100 minutes by @​AArnott in microsoft/vs-mef#332
• Generate consistent metadata view assembly names by @​davkean in microsoft/vs-mef#333
• Update reviewers list by @​taliamccormick in microsoft/vs-mef#339
• Upgrade 17.4 to stable version by @​javierdlg in microsoft/vs-mef#340
• Update VSMEF001PropertyMustHaveSetter.cs by @​Youssef1313 in microsoft/vs-mef#345

New Contributors

• @​matteo-prosperi made their first contribution in microsoft/vs-mef#329
• @​taliamccormick made their first contribution in microsoft/vs-mef#339
• @​javierdlg made their first contribution in microsoft/vs-mef#340
• @​Youssef1313 made their first contribution in microsoft/vs-mef#345

Full Changelog: microsoft/vs-mef@v17.2.41...v17.4.16

v17.2.41

Changes:

Breaking changes:

• #290: A few fixes to [OnImportsSatisfied] use

Fixes:

• #294: Fix deadlock in race condition
• #291: Fix discovery of V2 private imports on base classes
• #281: RuntimePartLifecycleTracker.CreateValue picks wrong ImportingConstructor with generic type argument in signature

Enhancements:

• #271: Mefx like command line tool
• #288: Improve error messages around part discovery
• #270: Remove LINQ/capture class allocations

Others:

... (truncated)

Commits

• f2baa1e VSMEF001 analysis should include generated code (#345)
• 1be9969 Merge pull request #347 from AArnott/metadataUpdate
• 7bad655 Update System.Reflection.Metadata to 6.0.0
• 932a165 Merge pull request #342 from microsoft/dependabot/nuget/Microsoft.VisualStudi...
• de4beb5 Bump Microsoft.VisualStudio.Threading.Analyzers from 17.2.32 to 17.4.27
• 36d913c Merge pull request #346 from AArnott/libtemplate
• 91eb1b0 Fix new compiler warnings
• 2fa9364 Fix up PackageReference versions
• 3380d0f Merge remote-tracking branch 'libtemplate/microbuild' into libtemplate
• f262028 Merge branch 'main' into microbuild
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)