Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bump the minor-changes group in /dotnet/PreVal with 5 updates #74

Closed
wants to merge 1 commit into from
Closed

Bump the minor-changes group in /dotnet/PreVal with 5 updates #74

wants to merge 1 commit into from

Conversation

dependabot[bot]
Copy link
Contributor

@dependabot dependabot bot commented on behalf of github Apr 1, 2024
edited
Loading

Bumps the minor-changes group in /dotnet/PreVal with 5 updates:

Package From To
Microsoft.AspNetCore.OpenApi 7.0.13 7.0.17
Microsoft.IdentityModel.JsonWebTokens 7.1.2 7.5.0
Microsoft.AspNetCore.Mvc.Testing 7.0.13 7.0.17
Microsoft.NET.Test.Sdk 17.8.0 17.9.0
xunit 2.6.2 2.7.0

Updates Microsoft.AspNetCore.OpenApi from 7.0.13 to 7.0.17

Release notes

Sourced from Microsoft.AspNetCore.OpenApi's releases.

.NET 7.0.17

Release

.NET 7.0.16

Release

.NET 7.0.15

Release

.NET 7.0.14

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v7.0.13...v7.0.14

Commits

Updates Microsoft.IdentityModel.JsonWebTokens from 7.1.2 to 7.5.0

Release notes

Sourced from Microsoft.IdentityModel.JsonWebTokens's releases.

7.5.0

New Features:

Supports the 1.1 version of the Microsoft Entra ID Endpoint #2503

What's Changed

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@v7.4.1...7.5.0

7.4.1

Bug Fixes:

  • SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
  • JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

  • Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
  • Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
  • Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

  • Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
  • Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

  • Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

  • Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
  • Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

  • Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
  • Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.4.0-preview1

Performance Improvements:

  • The existing JsonWebToken constructors now utilizes ReadOnlyMemory and Span to extract token segments, eliminating the need for string.split operations.
  • A new constructor has been introduced that accepts ReadOnlyMemory of an encoded token. See issue #2487.

Performance Assessment on .NET 8:

  • When using the preview version and opting for the constructor that accepts a string for the encoded token, the generation of a JWS yields a 3.95% decrease in memory usage, a 4.52% reduction in Gen0 and a 4.61% decrease in execution time compared to the latest release.
  • The performance of the constructor that accepts ReadOnlyMemory is comparable to the constructor accepting a string for the encoded token, both for JWS and JWE.

Preview branch: image

... (truncated)

Changelog

Sourced from Microsoft.IdentityModel.JsonWebTokens's changelog.

7.5.0

New features

  • Supports the 1.1 version of the Microsoft Entra ID Endpoint #2503

7.4.1

Bug Fixes:

  • SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
  • JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

  • Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
  • Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
  • Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

  • Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
  • Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

  • Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

  • Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
  • Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

  • Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
  • Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.3.1

Bug Fixes:

  • Replace propertyName with MetadataName constant. See issue #2471 for details.
  • Fix 6x to 7x regression where mixed cases OIDC json was not correctly process. See #2404 and #2402 for details.

Performance Improvements:

  • Update the benchmark configuration. See issue #2468.

Documentation:

  • Update comment for azp in JsonWebToken. See #2475 for details.
  • Link to breaking change announcement. See #2478.
  • Fix typo in log message. See #2479.

7.3.0

New Features:

... (truncated)

Commits
  • afeb7e5 Marcinzo/issuervalidatorv11 (#2503)
  • 782602b edit changelog for 7.4.1 (#2525)
  • c1c24e2 Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityMode...
  • 795bbf0 Revert whitespace change in tests
  • 7cf0b79 Revert more whitespace changes
  • d2caeb8 Fix unnecessary whitespace changes
  • a1eaeeb Add tests:
  • 8def3ae Refactor PopulateValidationParametersWithCurrentConfigurationAsync to a share...
  • 3eae565 Small refactor of Saml2SecurityTokenHandler
  • 24927af Small refactor of SamlSecurityTokenHandler
  • Additional commits viewable in compare view

Updates Microsoft.AspNetCore.Mvc.Testing from 7.0.13 to 7.0.17

Release notes

Sourced from Microsoft.AspNetCore.Mvc.Testing's releases.

.NET 7.0.17

Release

.NET 7.0.16

Release

.NET 7.0.15

Release

.NET 7.0.14

Release

What's Changed

Full Changelog: dotnet/aspnetcore@v7.0.13...v7.0.14

Commits

Updates Microsoft.NET.Test.Sdk from 17.8.0 to 17.9.0

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

v17.9.0

What's Changed

New Contributors

Full Changelog: microsoft/vstest@v17.8.0...v17.9.0

v17.9.0-release-23619-01

What's Changed

Full Changelog: microsoft/vstest@v17.9.0-preview-23577-04...v17.9.0-release-23619-01

v17.9.0-preview-23577-04

What's Changed

Full Changelog: microsoft/vstest@v17.9.0-preview-23531-01...v17.9.0-preview-23577-04

v17.9.0-preview-23531-01

What's Changed

Full Changelog: microsoft/vstest@v17.9.0-preview-23503-02...v17.9.0-preview-23531-01

v17.9.0-preview-23503-02

What's Changed

Full Changelog: microsoft/vstest@v17.8.0-release-23468-02...v17.9.0-preview-23503-02

Commits

Updates xunit from 2.6.2 to 2.7.0

Commits
  • d806fa1 v2.7.0
  • 13bb60b #2872: Expand special handling for sets in Assert.Contains/DoesNotContain (v2)
  • 203b4d9 Update to use the common build system (#2883)
  • a4f585b Remove UTF-8 byte order marks
  • 8b2c7b2 Add v3 build submodule
  • 2413c57 Throw when user tries to run a non-async test with a timeout
  • 9ebc10c #2573: Opting out of AsyncTestSyncContext (v2)
  • b060404 xunit/xunit#2880: Update XML documentation for string-based Assert.Equal (v2)
  • 6bbf922 Add conditions to EquivalenceAssertsTests for XUNIT_IMMUTABLE_COLLECTIONS
  • cab6a3e #2871: Inner exception stack trace is missing from Assert.Collection failure ...
  • Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the minor-changes group in /dotnet/PreVal with 5 updates
c3a3161 
Bumps the minor-changes group in /dotnet/PreVal with 5 updates:

| Package | From | To |
| --- | --- | --- |
| [Microsoft.AspNetCore.OpenApi](https://github.com/dotnet/aspnetcore) | `7.0.13` | `7.0.17` |
| [Microsoft.IdentityModel.JsonWebTokens](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet) | `7.1.2` | `7.5.0` |
| [Microsoft.AspNetCore.Mvc.Testing](https://github.com/dotnet/aspnetcore) | `7.0.13` | `7.0.17` |
| [Microsoft.NET.Test.Sdk](https://github.com/microsoft/vstest) | `17.8.0` | `17.9.0` |
| [xunit](https://github.com/xunit/xunit) | `2.6.2` | `2.7.0` |


Updates `Microsoft.AspNetCore.OpenApi` from 7.0.13 to 7.0.17
- [Release notes](https://github.com/dotnet/aspnetcore/releases)
- [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md)
- [Commits](dotnet/aspnetcore@v7.0.13...v7.0.17)

Updates `Microsoft.IdentityModel.JsonWebTokens` from 7.1.2 to 7.5.0
- [Release notes](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/releases)
- [Changelog](https://github.com/AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet/blob/dev/CHANGELOG.md)
- [Commits](AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@7.1.2...7.5.0)

Updates `Microsoft.AspNetCore.Mvc.Testing` from 7.0.13 to 7.0.17
- [Release notes](https://github.com/dotnet/aspnetcore/releases)
- [Changelog](https://github.com/dotnet/aspnetcore/blob/main/docs/ReleasePlanning.md)
- [Commits](dotnet/aspnetcore@v7.0.13...v7.0.17)

Updates `Microsoft.NET.Test.Sdk` from 17.8.0 to 17.9.0
- [Release notes](https://github.com/microsoft/vstest/releases)
- [Changelog](https://github.com/microsoft/vstest/blob/main/docs/releases.md)
- [Commits](microsoft/vstest@v17.8.0...v17.9.0)

Updates `xunit` from 2.6.2 to 2.7.0
- [Commits](xunit/xunit@2.6.2...2.7.0)

---
updated-dependencies:
- dependency-name: Microsoft.AspNetCore.OpenApi
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-changes
- dependency-name: Microsoft.IdentityModel.JsonWebTokens
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-changes
- dependency-name: Microsoft.AspNetCore.Mvc.Testing
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: minor-changes
- dependency-name: Microsoft.NET.Test.Sdk
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-changes
- dependency-name: xunit
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: minor-changes
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Apr 1, 2024
@dependabot Dependabot
Copy link
Contributor Author

dependabot bot commented on behalf of github May 1, 2024

Looks like these dependencies are updatable in another way, so this is no longer needed.

@dependabot dependabot bot closed this May 1, 2024
@dependabot dependabot bot deleted the dependabot/nuget/dotnet/PreVal/minor-changes-de8a1d02e1 branch May 1, 2024 21:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
dependencies Pull requests that update a dependency file .NET Pull requests that update .net code
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
0 participants