Skip to content

Bump the all-packages group with 21 updates #508

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
dependabot wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Bump the all-packages group with 21 updates #508

dependabot wants to merge 1 commit into from

Conversation

@dependabot
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Jan 1, 2026

Updated Azure.Identity from 1.17.0 to 1.17.1.

Release notes

Sourced from Azure.Identity's releases.

1.17.1

1.17.1 (2025-11-18)

Other Changes

  • Updated Microsoft.Identity.Client and Microsoft.Identity.Client.Extensions.Msal dependencies to version 4.78.0.

Commits viewable in compare view.

Updated FluentValidation from 11.11.0 to 11.12.0.

Release notes

Sourced from FluentValidation's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Authentication.JwtBearer from 8.0.21 to 8.0.22.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.JwtBearer's releases.

8.0.22

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v8.0.21...v8.0.22

Commits viewable in compare view.

Updated Microsoft.AspNetCore.HeaderPropagation from 8.0.21 to 8.0.22.

Release notes

Sourced from Microsoft.AspNetCore.HeaderPropagation's releases.

8.0.22

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v8.0.21...v8.0.22

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Mvc.NewtonsoftJson from 8.0.21 to 8.0.22.

Release notes

Sourced from Microsoft.AspNetCore.Mvc.NewtonsoftJson's releases.

8.0.22

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v8.0.21...v8.0.22

Commits viewable in compare view.

Updated Microsoft.Azure.WebJobs.Host.Storage from 5.0.1 to 5.0.2.

Release notes

Sourced from Microsoft.Azure.WebJobs.Host.Storage's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Azure.WebJobs.Logging.ApplicationInsights from 3.0.41 to 3.0.44.

Release notes

Sourced from Microsoft.Azure.WebJobs.Logging.ApplicationInsights's releases.

3.0.43

What's Changed

New Contributors

Full Changelog: Azure/azure-webjobs-sdk@v3.0.42...v3.0.43

3.0.42

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration from 9.0.10 to 9.0.11.

Release notes

Sourced from Microsoft.Extensions.Configuration's releases.

9.0.11

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.10...v9.0.11

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration.Binder from 9.0.10 to 9.0.11.

Release notes

Sourced from Microsoft.Extensions.Configuration.Binder's releases.

9.0.11

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.10...v9.0.11

Commits viewable in compare view.

Updated Microsoft.Extensions.Configuration.Json from 9.0.10 to 9.0.11.

Release notes

Sourced from Microsoft.Extensions.Configuration.Json's releases.

9.0.11

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.10...v9.0.11

Commits viewable in compare view.

Updated Microsoft.Extensions.Http.Polly from 9.0.10 to 9.0.11.

Release notes

Sourced from Microsoft.Extensions.Http.Polly's releases.

9.0.11

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v9.0.10...v9.0.11

Commits viewable in compare view.

Updated Microsoft.Extensions.Logging.AzureAppServices from 8.0.21 to 8.0.22.

Release notes

Sourced from Microsoft.Extensions.Logging.AzureAppServices's releases.

8.0.22

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v8.0.21...v8.0.22

Commits viewable in compare view.

Updated Microsoft.Graph.Core from 3.2.4 to 3.2.5.

Release notes

Sourced from Microsoft.Graph.Core's releases.

3.2.5

3.2.5 (2025-12-19)

Bug Fixes

  • tooling: update all outdated PackageReferences (01f00c1)
  • tooling: update all outdated PackageReferences (808b60a)

Commits viewable in compare view.

Updated Microsoft.Identity.Client from 4.78.0 to 4.79.2.

Release notes

Sourced from Microsoft.Identity.Client's releases.

4.79.2

What's Changed

Full Changelog: AzureAD/microsoft-authentication-library-for-dotnet@4.79.0...4.79.2

4.79.0

What's Changed

Full Changelog: AzureAD/microsoft-authentication-library-for-dotnet@4.78.0...4.79.0

Commits viewable in compare view.

Updated Microsoft.IdentityModel.Logging from 8.14.0 to 8.15.0.

Release notes

Sourced from Microsoft.IdentityModel.Logging's releases.

8.15.0

New Features

  • Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
    Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
    See PR #​2377 for details.

Bug Fixes

  • Sanitize logs to avoid leaking sensitive data
    Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
    See PR #​3316 for details.
  • Optimize log sanitization with SearchValues
    Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
    See PR #​3341 for details.
  • Update test for IDX10400
    Adjusted the IDX10400 test to align with the current behavior and error messaging.
    See PR #​3314 for details.

Fundamentals

  • Add supported algorithm tests
    Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
    See PR #​3296 for details.
  • Migrate repository agent rules from .clinerules to agents.md
    Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
    See PR #​3313 for details.
  • Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
    Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
    See PR #​3356 for details.
  • Disable code coverage comments
    Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
    See PR #​3349 for details.
  • Fix CodeQL alerts
    Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
    See PR #​3364 for details.

.NET 10 / SDK and tooling updates

  • Building with .NET 10 preview / RC 1
    Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
    See PRs #​3287, #​3357, and #​3358 for details.
  • Fix .NET 10 test execution consistency
    Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
    See PR #​3337 for details.
  • Update project files and workflows for .NET 10.0 compatibility
    Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
    See PR #​3363 for details.
  • Update .NET version to meet CG compliance
    Updated the .NET version references to be compliant with corporate governance (CG) requirements.
    See PR #​3353 for details.
  • Update Coverlet collector and test SDK
    • Bumped CoverletCollectorVersion to 6.0.4.
      See PR #​3333 for details.
    • Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
      ... (truncated)

Commits viewable in compare view.

Updated Microsoft.NET.Test.Sdk from 18.0.0 to 18.0.1.

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

18.0.1

What's Changed

Fixing an issue with loading covrun64.dll on systems that have .NET 10 SDK installed: https://learn.microsoft.com/en-us/dotnet/core/compatibility/sdk/10.0/code-coverage-dynamic-native-instrumentation

Internal changes

Full Changelog: microsoft/vstest@v18.0.0...v18.0.1

Commits viewable in compare view.

Updated NUnit.Analyzers from 4.11.1 to 4.11.2.

Release notes

Sourced from NUnit.Analyzers's releases.

4.11.2

NUnit Analyzers 4.11.2 - November 2, 2025

This release of the NUnit Analyzers fixes a problem in the NUnit2057 analyzer for unnecessary use of lambda
expressions. The release also extends NUnit2021 so that it can determining if Is.NaN or Is.Not.NaN constraints
are used on incompatible types.

The release contains contributions from the following users (in alphabetical order):

  • @​MaceWindu
  • @​manfred-brands
  • @​stevenaw

Issues Resolved

Features and Enhancements

  • #​929 Alert when using Is.NaN or Is.Not.NaN on an incompatible type

Bugs

  • #​945 [NUnit2057] Reported for Throws assert

Commits viewable in compare view.

Updated System.IdentityModel.Tokens.Jwt from 8.14.0 to 8.15.0.

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

8.15.0

New Features

  • Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
    Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
    See PR #​2377 for details.

Bug Fixes

  • Sanitize logs to avoid leaking sensitive data
    Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
    See PR #​3316 for details.
  • Optimize log sanitization with SearchValues
    Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
    See PR #​3341 for details.
  • Update test for IDX10400
    Adjusted the IDX10400 test to align with the current behavior and error messaging.
    See PR #​3314 for details.

Fundamentals

  • Add supported algorithm tests
    Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
    See PR #​3296 for details.
  • Migrate repository agent rules from .clinerules to agents.md
    Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
    See PR #​3313 for details.
  • Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
    Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
    See PR #​3356 for details.
  • Disable code coverage comments
    Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
    See PR #​3349 for details.
  • Fix CodeQL alerts
    Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
    See PR #​3364 for details.

.NET 10 / SDK and tooling updates

  • Building with .NET 10 preview / RC 1
    Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
    See PRs #​3287, #​3357, and #​3358 for details.
  • Fix .NET 10 test execution consistency
    Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
    See PR #​3337 for details.
  • Update project files and workflows for .NET 10.0 compatibility
    Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
    See PR #​3363 for details.
  • Update .NET version to meet CG compliance
    Updated the .NET version references to be compliant with corporate governance (CG) requirements.
    See PR #​3353 for details.
  • Update Coverlet collector and test SDK
    • Bumped CoverletCollectorVersion to 6.0.4.
      See PR #​3333 for details.
    • Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
      ... (truncated)

Commits viewable in compare view.

Updated System.IO.Abstractions from 22.0.16 to 22.1.0.

Release notes

Sourced from System.IO.Abstractions's releases.

22.1.0

What's Changed

New Contributors

Full Changelog: TestableIO/System.IO.Abstractions@v22.0.16...v22.1.0

Commits viewable in compare view.

Updated System.Text.Encoding.CodePages from 9.0.10 to 9.0.11.

Release notes

Sourced from System.Text.Encoding.CodePages's releases.

9.0.11

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.10...v9.0.11

Commits viewable in compare view.

Updated System.Text.Json from 9.0.10 to 9.0.11.

Release notes

Sourced from System.Text.Json's releases.

9.0.11

Release

What's Changed

Full Changelog: dotnet/runtime@v9.0.10...v9.0.11

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting a...

Description has been truncated

@dependabot
Bump the all-packages group with 21 updates
8ca43c7 
Bumps Azure.Identity from 1.17.0 to 1.17.1
Bumps FluentValidation from 11.11.0 to 11.12.0
Bumps Microsoft.AspNetCore.Authentication.JwtBearer from 8.0.21 to 8.0.22
Bumps Microsoft.AspNetCore.HeaderPropagation from 8.0.21 to 8.0.22
Bumps Microsoft.AspNetCore.Mvc.NewtonsoftJson from 8.0.21 to 8.0.22
Bumps Microsoft.Azure.WebJobs.Host.Storage from 5.0.1 to 5.0.2
Bumps Microsoft.Azure.WebJobs.Logging.ApplicationInsights from 3.0.41 to 3.0.44
Bumps Microsoft.Extensions.Configuration from 9.0.10 to 9.0.11
Bumps Microsoft.Extensions.Configuration.Binder from 9.0.10 to 9.0.11
Bumps Microsoft.Extensions.Configuration.Json from 9.0.10 to 9.0.11
Bumps Microsoft.Extensions.Http.Polly from 9.0.10 to 9.0.11
Bumps Microsoft.Extensions.Logging.AzureAppServices from 8.0.21 to 8.0.22
Bumps Microsoft.Graph.Core from 3.2.4 to 3.2.5
Bumps Microsoft.Identity.Client from 4.78.0 to 4.79.2
Bumps Microsoft.IdentityModel.Logging from 8.14.0 to 8.15.0
Bumps Microsoft.NET.Test.Sdk from 18.0.0 to 18.0.1
Bumps NUnit.Analyzers from 4.11.1 to 4.11.2
Bumps System.IdentityModel.Tokens.Jwt from 8.14.0 to 8.15.0
Bumps System.IO.Abstractions from 22.0.16 to 22.1.0
Bumps System.Text.Encoding.CodePages from 9.0.10 to 9.0.11
Bumps System.Text.Json from 9.0.10 to 9.0.11

---
updated-dependencies:
- dependency-name: Azure.Identity
  dependency-version: 1.17.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: FluentValidation
  dependency-version: 11.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-packages
- dependency-name: FluentValidation
  dependency-version: 11.12.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-packages
- dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer
  dependency-version: 8.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.AspNetCore.HeaderPropagation
  dependency-version: 8.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.AspNetCore.HeaderPropagation
  dependency-version: 8.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.AspNetCore.Mvc.NewtonsoftJson
  dependency-version: 8.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Azure.WebJobs.Host.Storage
  dependency-version: 5.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Azure.WebJobs.Logging.ApplicationInsights
  dependency-version: 3.0.44
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Extensions.Configuration
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Extensions.Configuration.Binder
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Extensions.Configuration.Json
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: System.Text.Json
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Extensions.Http.Polly
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Extensions.Logging.AzureAppServices
  dependency-version: 8.0.22
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Graph.Core
  dependency-version: 3.2.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.Identity.Client
  dependency-version: 4.79.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-packages
- dependency-name: Microsoft.IdentityModel.Logging
  dependency-version: 8.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-packages
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-version: 18.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: NUnit.Analyzers
  dependency-version: 4.11.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: NUnit.Analyzers
  dependency-version: 4.11.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: NUnit.Analyzers
  dependency-version: 4.11.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: NUnit.Analyzers
  dependency-version: 4.11.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.15.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-packages
- dependency-name: System.IO.Abstractions
  dependency-version: 22.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-packages
- dependency-name: System.Text.Encoding.CodePages
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
- dependency-name: System.Text.Json
  dependency-version: 9.0.11
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-packages
...

Signed-off-by: dependabot[bot] <[email protected]>
@dependabot dependabot bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Jan 1, 2026
@dependabot dependabot bot requested review from a team and rockydevnet as code owners January 1, 2026 14:30
@dependabot dependabot bot added dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code labels Jan 1, 2026
@snyk-io-eu
Copy link

snyk-io-eu bot commented Jan 1, 2026
edited
Loading

Snyk checks have passed. No issues have been found so far.

Status Scanner Critical High Medium Low Total (0)
Open Source Security 0 0 0 0 0 issues
Code Security 0 0 0 0 0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Jan 1, 2026

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rockydevnet rockydevnet Awaiting requested review from rockydevnet rockydevnet is a code owner

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant