Skip to content

chore(deps): update nuget non-major dependencies #787

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 2 commits into from
Oct 2, 2024
Merged

chore(deps): update nuget non-major dependencies #787

merged 2 commits into from
Oct 2, 2024

Conversation

@renovate
Copy link
Contributor

@renovate renovate bot commented Aug 21, 2024
edited
Loading

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
Altinn.Authorization.ServiceDefaults 2.2.2 -> 2.5.0 age adoption passing confidence
Altinn.Authorization.ServiceDefaults.Npgsql.Yuniql 2.2.2 -> 2.5.0 age adoption passing confidence
Altinn.Common.AccessToken 4.5.0 -> 4.5.1 age adoption passing confidence
Altinn.Common.AccessTokenClient 3.0.6 -> 3.0.7 age adoption passing confidence
Azure.Extensions.AspNetCore.Configuration.Secrets (source) 1.3.1 -> 1.3.2 age adoption passing confidence
Azure.Identity (source) 1.12.0 -> 1.12.1 age adoption passing confidence
Azure.Storage.Blobs (source) 12.21.2 -> 12.22.1 age adoption passing confidence
Azure.Storage.Queues (source) 12.19.1 -> 12.20.0 age adoption passing confidence
Microsoft.AspNetCore.Mvc.Testing (source) 8.0.7 -> 8.0.8 age adoption passing confidence
Microsoft.Extensions.Azure (source) 1.7.4 -> 1.7.5 age adoption passing confidence
Microsoft.Extensions.FileProviders.Embedded (source) 8.0.7 -> 8.0.8 age adoption passing confidence
Microsoft.Extensions.Telemetry.Abstractions (source) 8.7.0 -> 8.9.1 age adoption passing confidence
Microsoft.IdentityModel.Logging 8.0.1 -> 8.1.0 age adoption passing confidence
Microsoft.NET.Test.Sdk 17.10.0 -> 17.11.1 age adoption passing confidence
Moq 4.20.70 -> 4.20.72 age adoption passing confidence
Npgsql 8.0.3 -> 8.0.4 age adoption passing confidence
Npgsql.OpenTelemetry 8.0.3 -> 8.0.4 age adoption passing confidence
Swashbuckle.AspNetCore 6.7.0 -> 6.8.0 age adoption passing confidence
Testcontainers.PostgreSql (source) 3.9.0 -> 3.10.0 age adoption passing confidence
xunit 2.9.0 -> 2.9.2 age adoption passing confidence

Release Notes

Altinn/altinn-authorization-utils (Altinn.Authorization.ServiceDefaults)

v2.5.0: Altinn.Authorization.ServiceDefaults: v2.5.0

Compare Source

Features

v2.4.0: Altinn.Authorization.ServiceDefaults: v2.4.0

Compare Source

Features

v2.3.0: Altinn.Authorization.ServiceDefaults: v2.3.0

Compare Source

Features
Altinn/altinn-accesstoken (Altinn.Common.AccessToken)

v4.5.1

Compare Source

What's Changed

Full Changelog: Altinn/altinn-accesstoken@Altinn.Common.AccessToken-4.5.0...Altinn.Common.AccessToken-4.5.1

Azure/azure-sdk-for-net (Azure.Extensions.AspNetCore.Configuration.Secrets)

v1.3.2

Compare Source

1.3.2 (2024-08-16)

Other Changes
  • Updated reference to Azure.Security.KeyVault.Secrets v4.6.0 to mitigate a reported SSRF vulnerability.
dotnet/aspnetcore (Microsoft.AspNetCore.Mvc.Testing)

v8.0.8: .NET 8.0.8

Release

dotnet/extensions (Microsoft.Extensions.Telemetry.Abstractions)

v8.9.1: .NET Extensions 8.9.1

8.9.1 packages are no all published in NuGet.org

What's Changed

Full Changelog: dotnet/extensions@v8.9.0...v8.9.1

v8.9.0: .NET Extensions 8.9.0

8.9.0 packages are now all published to NuGet.org

What's Changed

New Contributors

Full Changelog: dotnet/extensions@v8.8.0...v8.9.0

v8.8.0: .NET Extensions 8.8

8.8.0 packages are now all published in NuGet.org.

What's Changed

New Contributors

Full Changelog: dotnet/extensions@v8.7.0...v8.8.0

AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet (Microsoft.IdentityModel.Logging)

v8.1.0

Compare Source

=====

Performance improvements
  • Improves performance during issuer validation by replacing string comparison with span comparison. See PR #​2826.
New features
  • Add optional check to prevent using keys that are shared across multiple clouds. See issue #​2832 for details.
Bug fixes
  • JsonWebTokenHandler would only return unwrapped keys if there was no errors. This change is to align with the behavior in JwtSecurityTokenHandler, that is it returns the keys that were able to be unwrapped, and only throw if no keys were able to be unwrapped. See issue #​2695 for details.
Fundamentals
  • Fix flaky tests. See #​2793 for details.
  • Update XUnit versoin and fix test warnings due to new XUnit analyzers. See PR #​2796 for details.
  • Onhboard to code coverage in ADO. See PR #​2798.
  • Use IsTargetFrameworkCompatible(*) so AOT is forward-compatible with .NET 9 and beyond. See PR #​2790 for details.
  • Fix a merge conflict impacting dev. See PR #​2819.
  • Defining the following attribute in multiple assemblies (.Tokens, .Logging) causes an internal error.
    [DynamicallyAccessedMembers(DynamicallyAccessedMemberTypes.PublicConstructors)]. See PR #​2820.
  • Remove perl dependency. See PR #​2830.
Work related to redesign of IdentityModel's token validation logic #​2711

v8.0.2

Compare Source

=====

Security fundamentals
  • Add BannedApiAnalyzers to prevent use of ClaimsIdentity constructors. See PR #​2778 for details.
Bug fixes
  • IdentityModel now allows the JWT payload to be an empty string. See issue #​2656 for details.
  • Cache UseRfcDefinitionOfEpkAndKid switch. See PR #​2747 for details.
  • Method was named DoNotFailOnMissingTid in 7x and DontFailOnMissingTid in 8x, adding the method for back compat. See issue #​2750 for details.
  • Metadata is now updated on a background thread. See #​2780 for details.
  • JsonWebKeySet stores the original string it was created with. See PR #​2755 for details.
  • Restore AOT compatibility. See #​2711.
  • Fix OpenIdConnect parsing bug. See #​2772 for details.
  • Remove the lock on creating a SignatureProvider. See #​2788 for details.
Fundamentals
  • Test clean up #​2742.
  • Use only FxCop in .NET framework targets #​2693.
  • Add rule to add file headers automatically #​2748.
  • Code analysis updates #​2746.
  • Include README packages in NuGet #​2752.
  • Update projects inside WilsonUnix solution #​2768.
  • Code style enforced in build #​2603.
  • CodeQL update #​2767.
  • Update build pipeline to new one release build format #​2777.
  • Update GitHub actions to 9.0.100-preview.7.24407.12 and add <NoWarn>$(NoWarn);SYSLIB0057</NoWarn> due to breaking changes in preview7. #​2786.
Work relating to #​2711
microsoft/vstest (Microsoft.NET.Test.Sdk)

v17.11.1

What's Changed

Full Changelog: microsoft/vstest@v17.11.0...v17.11.1

v17.11.0

What's Changed

New Contributors

Full Changelog: microsoft/vstest@v17.10.0...v17.11.0-release-24352-06

moq/moq (Moq)

v4.20.72

Full Changelog

🔨 Other:

  • Question: Sponsorable Attribute in release v4.20.71 #​1513

🔀 Merged:

v4.20.71

Full Changelog

🐛 Fixed bugs:

  • (To delete) #​1497
  • Documentation link gives 404 #​1495
  • mock.Protected().Verify() does not work correctly #​1493
  • Documentation link is broken #​1487
  • Moq library throwing TypeIniatilizationException. #​1459

🔨 Other:

  • Documentation Unavailable Online #​1473
  • Supporting .NET8 #​1462
  • Some source code files is filled with comments like: "Unmerged change from project " #​1451
  • Question: would it make sense to call verify all on a strict mock when the mock gets disposed? #​1440
  • SponsorLink Integration Makes Moq Unuasable due to PII and GDPR Requirements #​1433
  • Default value ILookup<> in loose mode is null #​1391
  • Verifying a protected method when the exact parameter types are not statically known #​1339

🔀 Merged:

npgsql/npgsql (Npgsql)

v8.0.4

A large number of number of bugs have been fixed, here is the full list.

Full Changelog: npgsql/npgsql@v8.0.3...v8.0.4

domaindrivendev/Swashbuckle.AspNetCore (Swashbuckle.AspNetCore)

v6.8.0

What's Changed

New Contributors

Full Changelog: domaindrivendev/Swashbuckle.AspNetCore@v6.7.3...v6.8.0

v6.7.3

What's Changed

New Contributors

Full Changelog: domaindrivendev/Swashbuckle.AspNetCore@v6.7.2...v6.7.3

v6.7.2

What's Changed

Full Changelog: domaindrivendev/Swashbuckle.AspNetCore@v6.7.1...v6.7.2

v6.7.1

What's Changed

Configuration

📅 Schedule: Branch creation - "before 07:00 on Thursday" in timezone Europe/Oslo, Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch 12 times, most recently from 9bcf4e8 to e979a82 Compare August 30, 2024 10:40
@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch 7 times, most recently from 8fe204c to 97d7557 Compare September 6, 2024 19:24
@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch 2 times, most recently from bc731ca to 8338db3 Compare September 8, 2024 07:50
lovoll
lovoll reviewed Sep 9, 2024
View reviewed changes
Copy link
Contributor

@lovoll lovoll left a comment
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Due to changes in Altinn.Authorization.ServiceDefaults Version 2.3.0
the key vault key set in appsettings.Development.json to http://devenv.altinn.no fails as it is required that comunication is performed over TLS connection. Change the config to https just changes the error to no listner as there is nothing listening here for port 443. So this has to be resolved before this could be taken into the code base

@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch 5 times, most recently from 543a969 to a2a9107 Compare September 13, 2024 19:00
@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch 3 times, most recently from 8549720 to b1778c9 Compare September 26, 2024 11:14
@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch 4 times, most recently from b443bb4 to 15ca7c8 Compare September 30, 2024 04:30
@renovate renovate bot force-pushed the renovate/nuget-minor-patch branch from 15ca7c8 to fa467f3 Compare October 2, 2024 11:56
@renovate
Copy link
Contributor Author

renovate bot commented Oct 2, 2024

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.

@sonarqubecloud
Copy link

sonarqubecloud bot commented Oct 2, 2024

Quality Gate Passed Quality Gate passed

Issues
1 New issue
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarCloud

@andreasisnes andreasisnes merged commit 6f5a108 into main Oct 2, 2024
9 checks passed
@andreasisnes andreasisnes deleted the renovate/nuget-minor-patch branch October 2, 2024 12:28
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lovoll lovoll lovoll left review comments

@andreasisnes andreasisnes andreasisnes approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@andreasisnes @lovoll