Bump the all-dependencies group with 11 updates #16503

dependabot · 2024-07-29T08:23:27Z

Bumps the all-dependencies group with 11 updates:

Package	From	To
Jint	`3.1.5`	`4.0.0`
Azure.Storage.Blobs	`12.21.0`	`12.21.1`
AWSSDK.S3	`3.7.310.7`	`3.7.400`
SixLabors.ImageSharp.Web	`3.1.2`	`3.1.3`
SixLabors.ImageSharp.Web.Providers.AWS	`3.1.2`	`3.1.3`
SixLabors.ImageSharp.Web.Providers.Azure	`3.1.2`	`3.1.3`
Microsoft.Identity.Web	`3.0.0`	`3.0.1`
Microsoft.IdentityModel.Protocols.OpenIdConnect	`7.6.2`	`8.0.1`
Microsoft.AspNetCore.Authentication.OpenIdConnect	`8.0.7`	`9.0.0-preview.6.24328.4`
HtmlSanitizer	`8.1.860-beta`	`8.1.870`
libphonenumber-csharp	`8.13.40`	`8.13.42`

Updates Jint from 3.1.5 to 4.0.0

Release notes

Sourced from Jint's releases.

v4.0.0

This release changes internal JavaScript parser from Esprima to Acornima and adds some new ECMAScript features.

Relevant bug fixes below have been backported into 3.x and are already part of its releases.

What's Changed

Acorn-based parsing by @adams85 in sebastienros/jint#1820

Remove obsolete members and bump version to 4 by @lahma in sebastienros/jint#1834

Remove NuGet.config configurations by @lahma in sebastienros/jint#1835

Fix dynamic importing of JSON modules by @adams85 in sebastienros/jint#1837

Update test262 suite and fix issues by @lahma in sebastienros/jint#1839

Add support for Float16Array by @lahma in sebastienros/jint#1840

Run GH Actions workflows for 3.x branch by @lahma in sebastienros/jint#1842

Improve System.Text.Json numeric type conversion under interop by @lahma in sebastienros/jint#1843

Improve environment handling performance and cleanup API by @lahma in sebastienros/jint#1845

Remove Enum.HasFlag usage by @lahma in sebastienros/jint#1850

Update README.md to fix comment of LimitMemory by @catcherwong in sebastienros/jint#1854

Improve localeCompare implementation by @sebastienros in sebastienros/jint#1853

edit ReadMe.md sample by @DHclly in sebastienros/jint#1855

Add dependabot configuration by @lahma in sebastienros/jint#1859

Bump Microsoft.Extensions.DependencyInjection from 7.0.0 to 8.0.0 by @dependabot in sebastienros/jint#1860

Bump Meziantou.Analyzer from 2.0.147 to 2.0.152 by @dependabot in sebastienros/jint#1863

Bump Microsoft.Extensions.TimeProvider.Testing from 8.0.0 to 8.5.0 by @dependabot in sebastienros/jint#1861

Cleanup csproj files by @lahma in sebastienros/jint#1865

Use global env definitions for GitHub Actions by @lahma in sebastienros/jint#1866

Bump Flurl.Http.Signed from 3.2.4 to 4.0.2 by @dependabot in sebastienros/jint#1862

Bump xunit from 2.7.1 to 2.8.0 by @dependabot in sebastienros/jint#1864

Bump xunit.runner.visualstudio from 2.5.8 to 2.8.0 by @dependabot in sebastienros/jint#1867

Make LazyPropertyDescriptor generic and some prototypes more lazy by @lahma in sebastienros/jint#1868

Fix string-indexing optimizations against custom strings by @lahma in sebastienros/jint#1871

Bump xunit.runner.visualstudio from 2.8.0 to 2.8.1 by @dependabot in sebastienros/jint#1873

Bump Meziantou.Analyzer from 2.0.152 to 2.0.153 by @dependabot in sebastienros/jint#1875

Bump Microsoft.NET.Test.Sdk from 17.9.0 to 17.10.0 by @dependabot in sebastienros/jint#1872

Upgrade to xUnit 2.8.1 by @lahma in sebastienros/jint#1876

Enable grouped version updates by @sebastienros in sebastienros/jint#1878

Bump the all-dependencies group with 2 updates by @dependabot in sebastienros/jint#1879

Fix BigInt arithmetic assignment by @lahma in sebastienros/jint#1887

Support creating NamespaceReference against empty namespace by @lahma in sebastienros/jint#1888

Expose construction capabilities with code for JsArrayBuffer by @lahma in sebastienros/jint#1890

Bump the all-dependencies group across 1 directory with 2 updates by @dependabot in sebastienros/jint#1894

Update test262 suite and implement Promise.try by @lahma in sebastienros/jint#1895

Bump NiL.JS from 2.5.1677 to 2.5.1684 in the all-dependencies group by @dependabot in sebastienros/jint#1896

Add Task async await check when evaluate await expression by @trannamtrung1st in sebastienros/jint#1882

Upgrade to Acornima v1.1.0 by @adams85 in sebastienros/jint#1898

Fix ArrayInstance.CopyValues to handle holes correctly by @lahma in sebastienros/jint#1900

Update test262 suite and fix typed array issues by @lahma in sebastienros/jint#1902

Add interop option ThrowOnUnresolvedMember by @lahma in sebastienros/jint#1904

Replace ReferenceEquals usage with is (not) null by @lahma in sebastienros/jint#1906

Bump Meziantou.Analyzer from 2.0.158 to 2.0.159 in the all-dependencies group by @dependabot in sebastienros/jint#1907

Upgrade test262 suite and fix issues by @lahma in sebastienros/jint#1910

... (truncated)

Commits

3d5c872 Ensure script preparation exposes only Jint's exception type (#1927)
91755e9 Ensure Acornima ParseErrorException is exposed as JavasScriptException (#1924)
ec397aa Bump Meziantou.Analyzer from 2.0.160 to 2.0.161 in the all-dependencies group...
1b7288d Make EsprimaExtensions.TryGetKey[ more resilient to missing execution context
0ea0c17 Bump the all-dependencies group with 6 updates (#1918)
86ecda6 Update ECMAScript 2024 feature status to README.md (#1916)
9f55b0d Avoid Array.sort infinite loops on full framework (#1914)
0ce19d8 Fix issues found with latest test262 suite (#1912)
94bd26f Implement Uint8Array to/from base64 (#1911)
e3a3d55 Upgrade test262 suite and fix issues (#1910)
Additional commits viewable in compare view

Updates Azure.Storage.Blobs from 12.21.0 to 12.21.1

Release notes

Sourced from Azure.Storage.Blobs's releases.

Azure.Storage.Blobs_12.21.1

12.21.1 (2024-07-25)

Bugs Fixed

Fixed [BUG] Azure Blob Storage Client SDK No Longer Supports Globalization Invariant Mode for Account Key Authentication #45052

Commits

d18af43 Prep for Storage GA patch release (#45169)
8db6066 Update Azure Maps SDK code owners (#44973)
ad2116c Increment package version after release of Azure.Identity (#45168)
78f27f2 Uniform logging for sdk automation (#45141)
f3612e7 Update AutoRest C# version to 3.0.0-beta.20240724.2 (#45170)
8107c20 Introduce Microsoft Fabric SDK (#44887)
203f6cd Fixed string to sign sorting (#45105)
049389b [AzureMonitor] fix flaky tests manipulating Environment Variables (#44968)
19891a6 Update CHANGELOG.md (#45167)
1dfda39 Prepare Identity for Jul release (#45162)
Additional commits viewable in compare view

Updates AWSSDK.S3 from 3.7.310.7 to 3.7.400

Commits

See full diff in compare view

Updates SixLabors.ImageSharp.Web from 3.1.2 to 3.1.3

Release notes

Sourced from SixLabors.ImageSharp.Web's releases.

v3.1.3

What's Changed

Update refs and fix EXIF handling. by @JimBobSquarePants in SixLabors/ImageSharp.Web#374

Full Changelog: SixLabors/ImageSharp.Web@v3.1.2...v3.1.3

Commits

17fde8a Merge pull request #374 from SixLabors/js/update-refs
5dd3dda Update refs and fix EXIF handling.
See full diff in compare view

Updates SixLabors.ImageSharp.Web.Providers.AWS from 3.1.2 to 3.1.3

Release notes

Sourced from SixLabors.ImageSharp.Web.Providers.AWS's releases.

v3.1.3

What's Changed

Update refs and fix EXIF handling. by @JimBobSquarePants in SixLabors/ImageSharp.Web#374

Full Changelog: SixLabors/ImageSharp.Web@v3.1.2...v3.1.3

Commits

17fde8a Merge pull request #374 from SixLabors/js/update-refs
5dd3dda Update refs and fix EXIF handling.
See full diff in compare view

Updates SixLabors.ImageSharp.Web from 3.1.2 to 3.1.3

Release notes

Sourced from SixLabors.ImageSharp.Web's releases.

v3.1.3

What's Changed

Update refs and fix EXIF handling. by @JimBobSquarePants in SixLabors/ImageSharp.Web#374

Full Changelog: SixLabors/ImageSharp.Web@v3.1.2...v3.1.3

Commits

17fde8a Merge pull request #374 from SixLabors/js/update-refs
5dd3dda Update refs and fix EXIF handling.
See full diff in compare view

Updates SixLabors.ImageSharp.Web.Providers.Azure from 3.1.2 to 3.1.3

Release notes

Sourced from SixLabors.ImageSharp.Web.Providers.Azure's releases.

v3.1.3

What's Changed

Update refs and fix EXIF handling. by @JimBobSquarePants in SixLabors/ImageSharp.Web#374

Full Changelog: SixLabors/ImageSharp.Web@v3.1.2...v3.1.3

Commits

17fde8a Merge pull request #374 from SixLabors/js/update-refs
5dd3dda Update refs and fix EXIF handling.
See full diff in compare view

Updates SixLabors.ImageSharp.Web from 3.1.2 to 3.1.3

Release notes

Sourced from SixLabors.ImageSharp.Web's releases.

v3.1.3

What's Changed

Update refs and fix EXIF handling. by @JimBobSquarePants in SixLabors/ImageSharp.Web#374

Full Changelog: SixLabors/ImageSharp.Web@v3.1.2...v3.1.3

Commits

17fde8a Merge pull request #374 from SixLabors/js/update-refs
5dd3dda Update refs and fix EXIF handling.
See full diff in compare view

Updates Microsoft.Identity.Web from 3.0.0 to 3.0.1

Release notes

Sourced from Microsoft.Identity.Web's releases.

3.0.1

Updated to Microsoft.IdentityModel.* 8.0.1

Changelog

Sourced from Microsoft.Identity.Web's changelog.

3.0.1

Updated to Microsoft.IdentityModel.* 8.0.1

Commits

449cbcb M.IM to 8.01 (#2949)
78e87da Removing reference to Iddp Code Signing (#2941)
See full diff in compare view

Updates Microsoft.IdentityModel.Protocols.OpenIdConnect from 7.6.2 to 8.0.1

Release notes

Sourced from Microsoft.IdentityModel.Protocols.OpenIdConnect's releases.

8.0.1

Bug fixes

IdentityModel now resolves the public key to EPK. See issue #1951 for details.

Fix a race condition where SignatureProvider was disposed but still able to leverage the cache and SignatureProvider now disposes when compacting. See PR #2682 for details.

For JWE, JsonWebTokenHandler.ValidateJWEAsync now considers the decrypt keys in the configuration. See issue #2737 for details.

Performance improvement

AppContext.TryGetSwitch statically caches internally but takes out a lock. .NET almost always caches these values. They're not expected to change while the process is running unlike normal config. IdentityModel now caches the value. See issue #2722 for details.

8.0.0

CVE package updates

CVE-2024-30105

See PR #2707 for details.

Breaking change:

Full list of breaking changes.

A derived ClaimsIdentity where claim retrieval is case-sensitive. The current ClaimsIdentity, in .NET, retrieves claims in a case-insensitive manner which is different than querying the underlying SecurityToken. The new CaseSensitiveClaimsIdentity class provides consistent retrieval logic with SecurityToken. Fallback to previous behavior via an AppContext switch. See PR #2700 for details.

Make CollectionUtilities.IsNullOrEmpty internal. See issues Order is not preserved when returning documents from SQL query #2651 and #1722 for details.

Overall improvements to the validation in IdentityModel:

See design proposal #2711 for details, all work internal for now. Please comment in the GitHub issue and provide feedback there.

New Features:

Allow users to provide a Stream to Write in OIDCConfigurationSerializer. See PR #2698 for details.

Bug fixes:

Remove dependency on AadIssuerValidator.GetTenantIdFromToken in ValidateIssuerSigningKey, to only consider the tid. An AppContext switch enables fallbacking to the previous behavior, which should not be needed. See PR #2680 for details.

Continuation of #2637 and #2646. Add the metadata authorization_details_types_supported from RFC 9396 - OAuth 2.0 Rich Authorization Requests to OpenIdConnectConfiguration.

The class OpenIdConnectPrompt now has the create prompt from Initiating User Registration via OpenID Connect 1.0

The following grant types are now included in OpenIdConnectGrantTypes: urn:ietf:params:oauth:grant-type:saml2-bearer from RFC 7522 - Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants, urn:ietf:params:oauth:grant-type:jwt-bearer from RFC 7523 - JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants, urn:ietf:params:oauth:grant-type:device_code from RFC 8628 - OAuth 2.0 Device Authorization Grant, urn:ietf:params:oauth:grant-type:token-exchange from RFC 8693 - OAuth 2.0 Token Exchange, urn:openid:params:grant-type:ciba from OpenID Connect Client-Initiated Backchannel Authentication Flow - Core 1.0

Serialize byte arrays as base64 strings in Json tokens. This was the behavior in 6.x releases. See issue #2524 for details.

When we added virtuals to abstract methods that threw in the base class, we then called those methods that were implemented in user derived classes. The user code would fault with a NotImplementedException. Now a message is returned that the user can act on to fix the issue. See issue #1970.

Fundamentals

Remove code that was used in target frameworks that got removed. See PR #2673 for details.

Rename local variables for better readability. See PR #2674 for details.

Refactor XML comments for improved clarity. See PR #2676, #2677, #2678, #2689 and #2703 for details.

Fix flaky test. See issue #2683 for details.

Made ConfigurationManager.GetConfigurationAsync a virtual method. See PR #2661

8.0.0-preview1

Breaking changes:

IdentityModel 8x no longer supports .net461, which has reached end of life and is no longer supported. See issue #2544 for details.

Two IdentityModel extension dlls Microsoft.IdentityModel.KeyVaultExtensions and Microsoft.IdentityModel.ManagedKeyVaultSecurityKey were using ADAL, which is no longer supported . The affected packages have been removed, as the replacement is to use Microsoft.Identity.Web. See issue #2454 for details.

AppContext.SetSwitch which were included in IdentityModel 7x, have been removed and are the default in IdentityModel 8x. The result is a more performant IdentityModel by default. See issue #2629 and https://aka.ms/IdentityModel8x for details.

... (truncated)

Changelog

Sourced from Microsoft.IdentityModel.Protocols.OpenIdConnect's changelog.

8.0.1

Bug fixes

IdentityModel now resolves the public key to EPK. See issue #1951 for details.

Fix a race condition where SignatureProvider was disposed but still able to leverage the cache and SignatureProvider now disposes when compacting. See PR #2682 for details.

For JWE, JsonWebTokenHandler.ValidateJWEAsync now considers the decrypt keys in the configuration. See issue #2737 for details.

Performance improvement

AppContext.TryGetSwitch statically caches internally but takes out a lock. .NET almost always caches these values. They're not expected to change while the process is running unlike normal config. IdentityModel now caches the value. See issue #2722 for details.

8.0.0

CVE package updates

CVE-2024-30105

See PR #2707 for details.

Breaking change:

Full list of breaking changes.

A derived ClaimsIdentity where claim retrieval is case-sensitive. The current ClaimsIdentity, in .NET, retrieves claims in a case-insensitive manner which is different than querying the underlying SecurityToken. The new CaseSensitiveClaimsIdentity class provides consistent retrieval logic with SecurityToken. Fallback to previous behavior via an AppContext switch. See PR #2700 for details.

Make CollectionUtilities.IsNullOrEmpty internal. See issues Order is not preserved when returning documents from SQL query #2651 and #1722 for details.

Overall improvements to the validation in IdentityModel:

See design proposal #2711 for details, all work internal for now. Please comment in the GitHub issue and provide feedback there.

New Features:

Allow users to provide a Stream to Write in OIDCConfigurationSerializer. See PR #2698 for details.

Bug fixes:

Remove dependency on AadIssuerValidator.GetTenantIdFromToken in ValidateIssuerSigningKey, to only consider the tid. An AppContext switch enables fallbacking to the previous behavior, which should not be needed. See PR #2680 for details.

Continuation of #2637 and #2646. Add the metadata authorization_details_types_supported from RFC 9396 - OAuth 2.0 Rich Authorization Requests to OpenIdConnectConfiguration.

The class OpenIdConnectPrompt now has the create prompt from Initiating User Registration via OpenID Connect 1.0

The following grant types are now included in OpenIdConnectGrantTypes: urn:ietf:params:oauth:grant-type:saml2-bearer from RFC 7522 - Security Assertion Markup Language (SAML) 2.0 Profile for OAuth 2.0 Client Authentication and Authorization Grants, urn:ietf:params:oauth:grant-type:jwt-bearer from RFC 7523 - JSON Web Token (JWT) Profile for OAuth 2.0 Client Authentication and Authorization Grants, urn:ietf:params:oauth:grant-type:device_code from RFC 8628 - OAuth 2.0 Device Authorization Grant, urn:ietf:params:oauth:grant-type:token-exchange from RFC 8693 - OAuth 2.0 Token Exchange, urn:openid:params:grant-type:ciba from OpenID Connect Client-Initiated Backchannel Authentication Flow - Core 1.0

Serialize byte arrays as base64 strings in Json tokens. This was the behavior in 6.x releases. See issue #2524 for details.

When we added virtuals to abstract methods that threw in the base class, we then called those methods that were implemented in user derived classes. The user code would fault with a NotImplementedException. Now a message is returned that the user can act on to fix the issue. See issue #1970.

Fundamentals

Remove code that was used in target frameworks that got removed. See PR #2673 for details.

Rename local variables for better readability. See PR #2674 for details.

Refactor XML comments for improved clarity. See PR #2676, #2677, #2678, #2689 and #2703 for details.

Fix flaky test. See issue #2683 for details.

Made ConfigurationManager.GetConfigurationAsync a virtual method. See PR #2661

8.0.0-preview1

Breaking changes:

IdentityModel 8x no longer supports .net461, which has reached end of life and is no longer supported. See issue #2544 for details.

Two IdentityModel extension dlls Microsoft.IdentityModel.KeyVaultExtensions and Microsoft.IdentityModel.ManagedKeyVaultSecurityKey were using ADAL, which is no longer supported . The affected packages have been removed, as the replacement is to use Microsoft.Identity.Web. See issue #2454 for details.

AppContext.SetSwitch which were included in IdentityModel 7x, have been removed and are the default in IdentityModel 8x. The result is a more performant IdentityModel by default. See issue #2629 and https://aka.ms/IdentityModel8x for details.

... (truncated)

Commits

e67b25b Fix string comparison with differing timestamps (#2739)
1c3e895 8.0.1 changelog (#2740)
ec39ddb Fixes 2737 (#2738)
49a3a95 Do not dispose SignatureProvider when AsymmetricAdapter faults. (#2682)
ecc2b08 removing old code signing reference (#2727)
a7ef799 Read Token: Remove Exceptions (#2702)
245c831 Transmit EPK and use as public key during decrypt (#2120)
7ef3263 Cache context switches (#2724)
8c5e456 Algorithm validation: Remove exceptions (#2719)
2e7c701 Update Saml2SecurityTokenHandler.cs (#2718)
Additional commits viewable in compare view

Updates Microsoft.AspNetCore.Authentication.OpenIdConnect from 8.0.7 to 9.0.0-preview.6.24328.4

Release notes

Sourced from Microsoft.AspNetCore.Authentication.OpenIdConnect's releases.

.NET 9.0 Preview 6

Release

.NET 9 Preview 5

Release

.NET 9 Preview 4

Release

.NET 9.0 Preview 3

Release

.NET 9.0 Preview 2

[Release[(https://github.com/dotnet/core/releases/tag/v9.0.0-preview.2)

.NET 9 Preview 1

Release

Commits

f508452 [release/9.0-preview6] Update dependencies from dotnet/efcore, dotnet/runtime...
07fefab [release/9.0-preview6] Update dependencies from dotnet/efcore (#56406)
68adb02 [release/9.0-preview6] Update dependencies from dotnet/runtime (#56354)
b6fed08 Update milestones for August (#56350)
c40405f [main] Update dependencies from dotnet/source-build-externals (#56342)
de37915 Fix urls in ProjectTemplates/README (#55984)
613ac88 Update dependencies from https://github.com/dotnet/winforms build 20240617.1 ...
613c1e9 Re-plat on JsonExporter APIs and remove JsonSchemaMapper prototype (#56330)
7712869 SE.Redis DC backend / HybridCache : add net8.0 TFM (#56122)
79cab58 [main] Update dependencies from dotnet/xdt (#56293)
Additional commits viewable in compare view

Updates HtmlSanitizer from 8.1.860-beta to 8.1.870

Release notes

Sourced from HtmlSanitizer's releases.

8.1.870

#556

Commits

See full diff in compare view

Updates libphonenumber-csharp from 8.13.40 to 8.13.42

Commits

31dae13 feat: automatic upgrade to v8.13.42
070d152 feat: automatic upgrade to v8.13.41
29957db Merge pull request #258 from twcclegg/dependabot/nuget/csharp/PhoneNumbers.Ex...
08e98f7 build(deps): bump System.Text.Json in /csharp/PhoneNumbers.Extensions
2467001 Restore check
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps the all-dependencies group with 11 updates: | Package | From | To | | --- | --- | --- | | [Jint](https://github.com/sebastienros/jint) | `3.1.5` | `4.0.0` | | [Azure.Storage.Blobs](https://github.com/Azure/azure-sdk-for-net) | `12.21.0` | `12.21.1` | | [AWSSDK.S3](https://github.com/aws/aws-sdk-net) | `3.7.310.7` | `3.7.400` | | [SixLabors.ImageSharp.Web](https://github.com/SixLabors/ImageSharp.Web) | `3.1.2` | `3.1.3` | | [SixLabors.ImageSharp.Web.Providers.AWS](https://github.com/SixLabors/ImageSharp.Web) | `3.1.2` | `3.1.3` | | [SixLabors.ImageSharp.Web.Providers.Azure](https://github.com/SixLabors/ImageSharp.Web) | `3.1.2` | `3.1.3` | | [Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web) | `3.0.0` | `3.0.1` | | [Microsoft.IdentityModel.Protocols.OpenIdConnect](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet) | `7.6.2` | `8.0.1` | | [Microsoft.AspNetCore.Authentication.OpenIdConnect](https://github.com/dotnet/aspnetcore) | `8.0.7` | `9.0.0-preview.6.24328.4` | | [HtmlSanitizer](https://github.com/mganss/HtmlSanitizer) | `8.1.860-beta` | `8.1.870` | | [libphonenumber-csharp](https://github.com/twcclegg/libphonenumber-csharp) | `8.13.40` | `8.13.42` | Updates `Jint` from 3.1.5 to 4.0.0 - [Release notes](https://github.com/sebastienros/jint/releases) - [Commits](sebastienros/jint@v3.1.5...v4.0.0) Updates `Azure.Storage.Blobs` from 12.21.0 to 12.21.1 - [Release notes](https://github.com/Azure/azure-sdk-for-net/releases) - [Commits](Azure/azure-sdk-for-net@Azure.Storage.Blobs_12.21.0...Azure.Storage.Blobs_12.21.1) Updates `AWSSDK.S3` from 3.7.310.7 to 3.7.400 - [Changelog](https://github.com/aws/aws-sdk-net/blob/main/SDK.CHANGELOG.MD) - [Commits](https://github.com/aws/aws-sdk-net/commits/3.7.400.0) Updates `SixLabors.ImageSharp.Web` from 3.1.2 to 3.1.3 - [Release notes](https://github.com/SixLabors/ImageSharp.Web/releases) - [Commits](SixLabors/ImageSharp.Web@v3.1.2...v3.1.3) Updates `SixLabors.ImageSharp.Web.Providers.AWS` from 3.1.2 to 3.1.3 - [Release notes](https://github.com/SixLabors/ImageSharp.Web/releases) - [Commits](SixLabors/ImageSharp.Web@v3.1.2...v3.1.3) Updates `SixLabors.ImageSharp.Web` from 3.1.2 to 3.1.3 - [Release notes](https://github.com/SixLabors/ImageSharp.Web/releases) - [Commits](SixLabors/ImageSharp.Web@v3.1.2...v3.1.3) Updates `SixLabors.ImageSharp.Web.Providers.Azure` from 3.1.2 to 3.1.3 - [Release notes](https://github.com/SixLabors/ImageSharp.Web/releases) - [Commits](SixLabors/ImageSharp.Web@v3.1.2...v3.1.3) Updates `SixLabors.ImageSharp.Web` from 3.1.2 to 3.1.3 - [Release notes](https://github.com/SixLabors/ImageSharp.Web/releases) - [Commits](SixLabors/ImageSharp.Web@v3.1.2...v3.1.3) Updates `Microsoft.Identity.Web` from 3.0.0 to 3.0.1 - [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases) - [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/master/changelog.md) - [Commits](AzureAD/microsoft-identity-web@3.0.0...3.0.1) Updates `Microsoft.IdentityModel.Protocols.OpenIdConnect` from 7.6.2 to 8.0.1 - [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases) - [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/CHANGELOG.md) - [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@7.6.2...8.0.1) Updates `Microsoft.AspNetCore.Authentication.OpenIdConnect` from 8.0.7 to 9.0.0-preview.6.24328.4 - [Release notes](https://github.com/dotnet/aspnetcore/releases) - [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md) - [Commits](dotnet/aspnetcore@v8.0.7...v9.0.0-preview.6.24328.4) Updates `HtmlSanitizer` from 8.1.860-beta to 8.1.870 - [Release notes](https://github.com/mganss/HtmlSanitizer/releases) - [Commits](https://github.com/mganss/HtmlSanitizer/commits/v8.1.870) Updates `libphonenumber-csharp` from 8.13.40 to 8.13.42 - [Release notes](https://github.com/twcclegg/libphonenumber-csharp/releases) - [Commits](twcclegg/libphonenumber-csharp@v8.13.40...v8.13.42) --- updated-dependencies: - dependency-name: Jint dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: Azure.Storage.Blobs dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: AWSSDK.S3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: SixLabors.ImageSharp.Web dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: SixLabors.ImageSharp.Web.Providers.AWS dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: SixLabors.ImageSharp.Web dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: SixLabors.ImageSharp.Web.Providers.Azure dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: SixLabors.ImageSharp.Web dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: Microsoft.Identity.Web dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: Microsoft.IdentityModel.Protocols.OpenIdConnect dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: Microsoft.AspNetCore.Authentication.OpenIdConnect dependency-type: direct:production update-type: version-update:semver-major dependency-group: all-dependencies - dependency-name: HtmlSanitizer dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies - dependency-name: libphonenumber-csharp dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-dependencies ... Signed-off-by: dependabot[bot] <[email protected]>

Directory.Packages.props

MikeAlhayek · 2024-07-29T15:23:31Z

@lahma did I make the changes to Jint correctly here or did I miss something?

lahma · 2024-07-29T15:58:41Z

@lahma did I make the changes to Jint correctly here or did I miss something?

I think it looks right. All upgrade related errors should be compile time errors after switching the parser library.

dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Jul 29, 2024

MikeAlhayek reviewed Jul 29, 2024

View reviewed changes

Directory.Packages.props Outdated Show resolved Hide resolved

MikeAlhayek added 2 commits July 29, 2024 08:10

Update Directory.Packages.props

f5097aa

Fix Jint errors

4ae755d

use HtmlSanitizer 8.2.871-beta

8d831dc

MikeAlhayek approved these changes Jul 29, 2024

View reviewed changes

MikeAlhayek merged commit 0dfbc29 into main Jul 29, 2024
11 checks passed

MikeAlhayek deleted the dependabot/nuget/all-dependencies-c200ce4a2e branch July 29, 2024 16:15

This was referenced Aug 1, 2024

Monthly community metrics report for 2024-07-01..2024-07-31 #16509

Closed

Monthly community metrics report for 2024-07-01..2024-07-31 SGuidone/OrchardCore#46

Open

Monthly community metrics report for 2024-07-01..2024-07-31 NinaRocket/OrchardCore#5

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the all-dependencies group with 11 updates #16503

Bump the all-dependencies group with 11 updates #16503

dependabot bot commented on behalf of github Jul 29, 2024

MikeAlhayek commented Jul 29, 2024

lahma commented Jul 29, 2024

Bump the all-dependencies group with 11 updates #16503

Bump the all-dependencies group with 11 updates #16503

Conversation

dependabot bot commented on behalf of github Jul 29, 2024

v4.0.0

What's Changed

Azure.Storage.Blobs_12.21.1

12.21.1 (2024-07-25)

Bugs Fixed

v3.1.3

What's Changed

v3.1.3

What's Changed

v3.1.3

What's Changed

v3.1.3

What's Changed

v3.1.3

What's Changed

3.0.1

3.0.1

8.0.1

Bug fixes

Performance improvement

8.0.0

CVE package updates

Breaking change:

Overall improvements to the validation in IdentityModel:

New Features:

Bug fixes:

Fundamentals

8.0.0-preview1

Breaking changes:

8.0.1

Bug fixes

Performance improvement

8.0.0

CVE package updates

Breaking change:

Overall improvements to the validation in IdentityModel:

New Features:

Bug fixes:

Fundamentals

8.0.0-preview1

Breaking changes:

.NET 9.0 Preview 6

.NET 9 Preview 5

.NET 9 Preview 4

.NET 9.0 Preview 3

.NET 9.0 Preview 2

.NET 9 Preview 1

8.1.870

MikeAlhayek commented Jul 29, 2024

lahma commented Jul 29, 2024