Bump Microsoft.AspNetCore.Authentication.JwtBearer and 7 others #249

dependabot · 2025-09-01T05:36:22Z

Updated Microsoft.AspNetCore.Authentication.JwtBearer from 8.0.13 to 8.0.19.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.JwtBearer's releases.

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: dotnet/aspnetcore@v8.0.17...v8.0.18

8.0.17 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Mvc.Testing from 8.0.13 to 8.0.19.

Release notes

Sourced from Microsoft.AspNetCore.Mvc.Testing's releases.

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: dotnet/aspnetcore@v8.0.17...v8.0.18

8.0.17 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

Commits viewable in compare view.

Updated Microsoft.AspNetCore.OpenApi from 8.0.13 to 8.0.19.

Release notes

Sourced from Microsoft.AspNetCore.OpenApi's releases.

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: dotnet/aspnetcore@v8.0.17...v8.0.18

8.0.17 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

Commits viewable in compare view.

Updated Npgsql from 9.0.2 to 9.0.3.

Release notes

Sourced from Npgsql's releases.

9.0.3

v9.0.3 contains several minor bug fixes.

Milestone issues

Full Changelog: npgsql/npgsql@v9.0.2...v9.0.3

Commits viewable in compare view.

Updated Roslynator.Analyzers from 4.13.0 to 4.14.0.

Release notes

Sourced from Roslynator.Analyzers's releases.

4.14.0

Added

[CLI] Add support for GitLab analyzer reports (PR)

Fixed

Fix analyzer RCS1264 (PR)
Fix analyzer RCS1229 (PR)
Fix analyzer RCS1250 (PR by @aihnatiuk)
Fix analyzer RCS1260 (PR)
Fix analyzer RCS1105 (PR)
Fix analyzer RCS1260 (PR)

Changed

Disable analyzer RCS1036 by default (PR)
- Use analyzer RCS0063 instead

Removed

Remove legacy config options (PR)

4.13.1

Added

Support custom path of a test file (PR)
- It's possible to specify a directory path and/or a file name of a test file.
- Applies to testing library (Roslynator.Testing.*).

Commits viewable in compare view.

Updated Roslynator.CodeFixes from 4.13.0 to 4.14.0.

Release notes

Sourced from Roslynator.CodeFixes's releases.

4.14.0

Added

[CLI] Add support for GitLab analyzer reports (PR)

Fixed

Fix analyzer RCS1264 (PR)
Fix analyzer RCS1229 (PR)
Fix analyzer RCS1250 (PR by @aihnatiuk)
Fix analyzer RCS1260 (PR)
Fix analyzer RCS1105 (PR)
Fix analyzer RCS1260 (PR)

Changed

Disable analyzer RCS1036 by default (PR)
- Use analyzer RCS0063 instead

Removed

Remove legacy config options (PR)

4.13.1

Added

Support custom path of a test file (PR)
- It's possible to specify a directory path and/or a file name of a test file.
- Applies to testing library (Roslynator.Testing.*).

Commits viewable in compare view.

Updated System.IdentityModel.Tokens.Jwt from 8.5.0 to 8.14.0.

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

8.14.0

Bug Fixes

Switch back to use ValidationResult instead of OperationResult when validating a token in a new experimental validation flow. Additionally removed the dependency on Microsoft.IdentityModel.Abstractions. See #3299 for details.

8.13.1

Dependencies

Microsoft.IdentityModel now depends on Microsoft.Identity.Abstractions 9.3.0

Bug Fixes

Fixed a decompression failure happening for large JWE payloads. See #3286 for details.

Work related to redesign of IdentityModel's token validation logic #2711

Update the validation methods to return Microsoft.Identity.Abstractions.OperationResult. See #3284 for details.

8.13.0

Fundamentals

CaseSensitiveClaimsIdentity.SecurityToken setter is now protected internal (was internal). See PR #3278 for details.
Update .NET SDK version to 9.0.108 used when building or running the code. See PR #3274 for details.
Update RsaSecurityKey.cs to replace the Pkcs1 padding by Pss from HasPrivateKey check. See #3280 for details.

What's Changed

Make CaseSensitiveClaimsIdentity.SecurityToken setter protected by @keegan-caruso in Make CaseSensitiveClaimsIdentity.SecurityToken setter protected AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3278
Update .NET SDK version in global.json from 9.0.107 to 9.0.108 by @Copilot in Update .NET SDK version in global.json from 9.0.107 to 9.0.108 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3274
Update RsaSecurityKey.cs to remove Pkcs 1 by @keegan-caruso in Update RsaSecurityKey.cs to remove Pkcs 1 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3280
changelog for 8.13 by @jennyf19 in changelog for 8.13 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3282

New Contributors

@Copilot made their first contribution in Update .NET SDK version in global.json from 9.0.107 to 9.0.108 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3274

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.1...8.13.0

8.12.1

Fundamentals

Update .NET SDK version to 9.0.107 used when building or running the code. See #3263 for details.
To keep our experimental code separate from production code, all files associated with experimental features have been moved to the Experimental folders. See PR #3261 for details.
Experimental code leaked into TokenValidationResult from early prototypes. See PR #3259 for details.

What's Changed

Remove experimental code from TokenValidationResult by @brentschmaltz in Remove experimental code from TokenValidationResult AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3259
Moved files to experimental folder by @brentschmaltz in Moved files to experimental folder AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3261
Update global.json to latest by @jennyf19 in Update global.json to latest AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3263

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.12.0...8.12.1

8.12.0

New Features

Enhance ConfigurationManager with event handling
Added event handling capabilities to the ConfigurationManager, enabling consumers to subscribe to configuration change events. This enhancement improves extensibility and allows more responsive applications. For details see #3253

Bug Fixes

Add expected Base64UrlEncoder.Decode overload for NET6 and 8
Introduced the expected overload of Base64UrlEncoder.Decode for .NET 6 and 8, ensuring compatibility and preventing missing method issues on these frameworks.
For details see #3249

Fundamentals

Add AI assist rules
Incorporated AI assist rules to enhance AI agents effectiveness.
For details see #3255
Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0
Upgraded analyzer packages for improved diagnostics and code consistency (in particular delegates are added).
For details see #3256
Move suppression of RS006 to csproj
Centralized suppression of RS006 warnings in project files for easier management.
For details see #3230

What's Changed

Move suppression of RS006 to csproj. by @brentschmaltz in Move suppression of RS006 to csproj. AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3230
Add expected Base64UrlEncoder.Decode overload for NET6 and 8 by @pmaytak in Add expected Base64UrlEncoder.Decode overload for NET6 and 8 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3250
add ai assist rules by @jennyf19 in add ai assist rules AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3255
Enhance ConfigurationManager with event handling by @GeoK in Enhance ConfigurationManager with event handling AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3254
Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0 by @pmaytak in Update PublicApiAnalyzers and BannedApiAnalyzers to 4.14.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3256
Update CHANGELOG.md for 8.12.0 by @jmprieur in Update CHANGELOG.md for 8.12.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3258

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.11.0...8.12.0

8.11.0

New Features:

Microsoft.IdentityModel now exposes the AadIssuerValidator factory method publicly to enable caching functionality for AadIssuerValidator instances. See issue #3245 for details.
Added a new public async API: JsonWebTokenHandler.DecryptTokenWithConfigurationAsync, which decrypts a JWE token using keys from either TokenValidationParameters or, if not present, from configuration (such as via a ConfigurationManager). This enhancement improves developer experience by enabling asynchronous, cancellation-aware JWE decryption scenarios, aligning with modern .NET async patterns and making integration with external key/configuration sources more robust and observable. See PR #3243 for details.

What's Changed

few updates by @jennyf19 in few updates AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3242
Changelog for 8.10.0 by @sruke in Changelog for 8.10.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3241
Exposes publicly override of AadIssuerValidator factory taking a delegate by @jmprieur in Exposes publicly override of AadIssuerValidator factory taking a delegate AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3244
update current version to 8.10.0 by @brentschmaltz in update current version to 8.10.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3246
Add DecryptTokenWithConfiguration API by @pmaytak in Add DecryptTokenWithConfiguration API AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3243
changelog for 8.11 by @jennyf19 in changelog for 8.11 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3248

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.10.0...8.11.0

8.10.0

Bug Fixes

Corrected casing of the Type attribute in SubjectConfirmationData. See #3206.
Removed Microsoft.Bcl.Memory dependency for pre-.NET 9.0 targets. See #3220.
Aligned Microsoft.Extensions.Logging.Abstractions version to 8.0.0 for .NET 9 to match other targets. See #3226.

Fundamentals

Introduced Long-Term Support (LTS) policy. See #3228 and #3232.

8.9.0

Bug Fixes

syncAfter has been updated to preserve UTC information, addressing a bug where GetConfigurationAsync does not refresh configuration in ConfigurationManager. See Don't lose TimeZone kind when creating sync after AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3213.
Fixed a null reference issue in KeyInfo. See fix keyinfo null ref AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3203.

New Features

Introduced a new delegate for reading custom token payload values on JsonWebToken. See Replace JsonWebToken ReadPayloadValue with a delegate AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#2981.
Added an overload for ReadJsonWebToken to take a ReadOnlyMemory. See add an overload for ReadJsonWebToken to take a ReadOnlyMemory, add te… AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3205.

Fundamentals

Utilized IList to avoid enumerator allocation during audience validation. See Use IList to avoid enumerator allocation AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3204.

8.8.0

New Features

Adds the ability for the metadata refresh to be done as a blocking call, as per 8.0.1 behavior. This is done through the Switch.Microsoft.IdentityModel.UpdateConfigAsBlocking switch. If set, configuration calls will be blocking when metadata is updated, otherwise, if token arrive with a new signing keys, validation errors will be returned to the caller. See PR #3193 for details.
Identity.Model updates some log and error messages (IDX10214, IDX10215). If the information is needed for debugging purposes, it can be reverted via the Switch.Microsoft.IdentityModel.DoNotScrubExceptions AppContextSwitch. See PR #3195 and https://aka.ms/identitymodel/app-context-switches for details.
Change all plain object locks to System.Thread.Lock objects for .NET 9 or greater. See PRs #3185 and #3189 for details.

8.7.0 Bug Fixes

Add back internal methods IsRecoverableException and IsRecoverableExceptionType whose signatures were changed in the previous version. See #3181.

New Features

Make Cnf class public and move it to Microsoft.IdentityModel.Tokens package. See #3165.

What's Changed

Post Release 8.6.1 cleanup by @mdchennu in Post Release 8.6.1 cleanup AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3160
Updates CodeQL.yaml to exclude test files by @sruke in Updates CodeQL.yaml to exclude test files AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3163
Adds explanation for CodeQL warnings by @sruke in Adds explanation for CodeQL warnings AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3167
Fix typo by @rstm-sf in Fix typo AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3175
Need to change the locks by @JoshLozensky in Need to change the locks AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3171
Move CNF from SHR to M.IM.Tokens by @keegan-caruso in Move CNF from SHR to M.IM.Tokens AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3168
Add back IsRecoverableException methods. by @pmaytak in Add back IsRecoverableException methods. AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3183
Revert "Need to change the locks" by @pmaytak in Revert "Need to change the locks" AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3186
8.7.0 changelog by @pmaytak in 8.7.0 changelog AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3184

New Contributors

@rstm-sf made their first contribution in Fix typo AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3175

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.6.1...8.7.0

8.6.1

Bug fix

Microsoft.IdentityModel now triggers a configuration refresh if token decryption fails. See issue #3148 for details.
Fix a bug in JsonWebTokenHandler where JwtTokenDecryptionParameters's Alg and Enc were not set during token decryption, causing IDX10611 and IDX10619 errors to show null values in the messages. See issue #3003 for details.

Fundamentals

For development, IdentityModel now has a global.json file to specify the .NET SDK version. See issue #2995 for details.

What's Changed

Update version.props to next version by @jennyf19 in Update version.props to next version AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3145
Update the public API shipped files by @jmprieur in Update the public API shipped files AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3146
Add global.json file by @mdchennu in Add global.json file AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3153
Trigger metadata refresh for token decryption errors by @pmaytak in Trigger metadata refresh for token decryption errors AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3149
Populate error messages correctly from JwtTokenUtilities.DecryptJwtToken by @ksaaf in Populate error messages correctly from JwtTokenUtilities.DecryptJwtToken AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3152
first changelog update by @jennyf19 in first changelog update AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3156

New Contributors

@mdchennu made their first contribution in Add global.json file AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3153
@ksaaf made their first contribution in Populate error messages correctly from JwtTokenUtilities.DecryptJwtToken AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3152

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.6.0...8.6.1

8.6.0

New Features

TokenValidationParameters has a new boolean property TryAllDecryptionKeys that let you choose whether to try all decrypt keys when no key matches the token decrypt key IDs. By default it's set to true (legacy behavior) but you can set it to false to avoid tyring all keys which is more performant. See #3128
Promote KeyInfo.MatchesKey from internal to protected internal virtual to enable SAML extensibility (for CoreWcf). See #3140

Fundamentals

Update dependency on Microsoft.Extensions.Logging.Abstractions from 9.0.0 to 8.0.2 to avoid package downgrade in apps on .NET 9 using a netstandard2.0 library referencing logging.abstractions. See 3143
Add more tests for encrypted tokens. See #3139

What's Changed

Update CHANGELOG.md by @jennyf19 in Update CHANGELOG.md AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3133
Update version.props to next version by @jennyf19 in Update version.props to next version AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3137
Add TryAllDecryptionKeys flag to whether decrypt if no key IDs match by @pmaytak in Add TryAllDecryptionKeys flag to whether decrypt if no key IDs match AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3128
Change KeyInfo.MatchesKey from internal to protected internal virtual. by @brentschmaltz in Change KeyInfo.MatchesKey from internal to protected internal virtual. AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3140
Fix #3112 by @jmprieur in Fix #3112 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3143
Add more auto-decryption related tests by @pmaytak in Add more auto-decryption related tests AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3139
Update changelog.md for 8.6.0 by @jmprieur in Update changelog.md for 8.6.0 AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#3144

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@8.5.0...8.6.0

Commits viewable in compare view.

Updated xunit.runner.visualstudio from 3.0.2 to 3.1.4.

Release notes

Sourced from xunit.runner.visualstudio's releases.

No release notes found for this version range.

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps Microsoft.AspNetCore.Authentication.JwtBearer from 8.0.13 to 8.0.19 Bumps Microsoft.AspNetCore.Mvc.Testing from 8.0.13 to 8.0.19 Bumps Microsoft.AspNetCore.OpenApi from 8.0.13 to 8.0.19 Bumps Npgsql from 9.0.2 to 9.0.3 Bumps Roslynator.Analyzers from 4.13.0 to 4.14.0 Bumps Roslynator.CodeFixes from 4.13.0 to 4.14.0 Bumps System.IdentityModel.Tokens.Jwt from 8.5.0 to 8.14.0 Bumps xunit.runner.visualstudio from 3.0.2 to 3.1.4 --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer dependency-version: 8.0.19 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: non-major-versions - dependency-name: Microsoft.AspNetCore.Mvc.Testing dependency-version: 8.0.19 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: non-major-versions - dependency-name: Microsoft.AspNetCore.OpenApi dependency-version: 8.0.19 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: non-major-versions - dependency-name: Npgsql dependency-version: 9.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: non-major-versions - dependency-name: Roslynator.Analyzers dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: non-major-versions - dependency-name: Roslynator.CodeFixes dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: non-major-versions - dependency-name: System.IdentityModel.Tokens.Jwt dependency-version: 8.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: non-major-versions - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.4 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: non-major-versions ... Signed-off-by: dependabot[bot] <[email protected]>

dependabot · 2025-09-15T02:11:43Z

Looks like these dependencies are updatable in another way, so this is no longer needed.

dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Sep 1, 2025

dependabot bot closed this Sep 15, 2025

dependabot bot deleted the dependabot/nuget/Backend/Api/non-major-versions-294302c882 branch September 15, 2025 02:11

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump Microsoft.AspNetCore.Authentication.JwtBearer and 7 others #249

Bump Microsoft.AspNetCore.Authentication.JwtBearer and 7 others #249

Uh oh!

dependabot bot commented on behalf of github Sep 1, 2025 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Sep 15, 2025

Uh oh!

Uh oh!

Bump Microsoft.AspNetCore.Authentication.JwtBearer and 7 others #249

Bump Microsoft.AspNetCore.Authentication.JwtBearer and 7 others #249

Uh oh!

Conversation

dependabot bot commented on behalf of github Sep 1, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

What's Changed

8.0.14

What's Changed

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

What's Changed

8.0.14

What's Changed

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

What's Changed

8.0.14

What's Changed

9.0.3

4.14.0

Added

Fixed

Changed

Removed

4.13.1

Added

4.14.0

Added

Fixed

Changed

Removed

4.13.1

Added

8.14.0

8.14.0

Bug Fixes

8.13.1

8.13.1

Dependencies

Bug Fixes

Work related to redesign of IdentityModel's token validation logic #​2711

8.13.0

8.13.0

Fundamentals

What's Changed

New Contributors

8.12.1

8.12.1

Fundamentals

What's Changed

8.12.0

8.12.0

New Features

Bug Fixes

Fundamentals

What's Changed

dependabot bot commented on behalf of github Sep 1, 2025 •

edited

Loading

Work related to redesign of IdentityModel's token validation logic #2711