Bump the minor-changes group in /dotnet/PreVal with 6 updates

[dependabot]

Bumps the minor-changes group in /dotnet/PreVal with 6 updates:

Package	From	To
Microsoft.AspNetCore.Mvc.Testing	7.0.13	7.0.18
Microsoft.NET.Test.Sdk	17.8.0	17.9.0
xunit	2.6.2	2.8.0
xunit.runner.visualstudio	2.5.7	2.8.0
Microsoft.AspNetCore.OpenApi	7.0.13	7.0.18
Microsoft.IdentityModel.JsonWebTokens	7.1.2	7.5.1

Updates Microsoft.AspNetCore.Mvc.Testing from 7.0.13 to 7.0.18

Release notes

Sourced from Microsoft.AspNetCore.Mvc.Testing's releases.

.NET 7.0.18

Release

.NET 7.0.17

Release

.NET 7.0.16

Release

.NET 7.0.15

Release

.NET 7.0.14

Release

What's Changed

• [release/7.0] Update jquery-validation to v1.19.5 by @​github-actions in dotnet/aspnetcore#50483
• Merging internal commits for release/7.0 by @​vseanreesermsft in dotnet/aspnetcore#50660
• [release/7.0] Fix 6.0 SiteExtension version by @​wtgodbe in dotnet/aspnetcore#50708
• Update branding to 7.0.13 by @​vseanreesermsft in dotnet/aspnetcore#51116
• [release/7.0] (deps): Bump src/submodules/googletest from 8a6feab to e47544a by @​dependabot in dotnet/aspnetcore#51051
• [release/7.0] Fix DragDrop_CanTrigger() flakiness by @​MackinnonBuck in dotnet/aspnetcore#51141
• [release/7.0] Dispose CTS in HubConnection streaming by @​github-actions in dotnet/aspnetcore#51138
• Merging internal commits for release/7.0 by @​vseanreesermsft in dotnet/aspnetcore#51266
• [release/7.0] Update dependencies from dotnet/arcade by @​dotnet-maestro in dotnet/aspnetcore#51327
• Update branding to 7.0.14 by @​vseanreesermsft in dotnet/aspnetcore#51479

Full Changelog: dotnet/aspnetcore@v7.0.13...v7.0.14

Commits

• f050ae0 Merged PR 38311: [internal/release/7.0] Update dependencies from dnceng/inter...
• 3707caa Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• f0ffaf8 Merged PR 38241: [internal/release/7.0] Update dependencies from dnceng/inter...
• e6cf755 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ef...
• 27cdc53 Merged PR 38192: Local dependencies updated based on build with BAR id 217277...
• cc12b38 Local dependencies updated based on build with BAR id 217277 (20240313.20 fro...
• 111d9f6 Merged PR 38171: [internal/release/7.0] Merge from public
• d8bc595 Update dependencies from https://github.com/dotnet/source-build-externals bui...
• 660cba7 Merged PR 37867: [internal/release/7.0] Update dependencies from dnceng/inter...
• 91ade97 Merge in 'release/7.0' changes
• Additional commits viewable in compare view

Updates Microsoft.NET.Test.Sdk from 17.8.0 to 17.9.0

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

v17.9.0

What's Changed

• Remove dependency on Nuget.Frameworks by @​nohwnd in microsoft/vstest#4693
• Add platform guard by @​dotMorten in microsoft/vstest#4737
• Remove javascript in HtmlLogger by @​daveMueller in microsoft/vstest#4744
• Fix CPU is consumed by polling frequently when there is no subscriber by @​nohwnd in microsoft/vstest#4735
• Create a proper MSBuild ToolTask based VSTestTask by @​mcartoixa in microsoft/vstest#2702
• Update SDK, copy logger by @​nohwnd in microsoft/vstest#4755
• Fix staircase in logger by @​nohwnd in microsoft/vstest#4756
• Update dump client to latest by @​nohwnd in microsoft/vstest#4724
• [rel/17.9] Disable testhost prestart by @​nohwnd in microsoft/vstest#4836

New Contributors

• @​jithu7432 made their first contribution in microsoft/vstest#4698
• @​mcartoixa made their first contribution in microsoft/vstest#2702

Full Changelog: microsoft/vstest@v17.8.0...v17.9.0

v17.9.0-release-23619-01

What's Changed

Full Changelog: microsoft/vstest@v17.9.0-preview-23577-04...v17.9.0-release-23619-01

v17.9.0-preview-23577-04

What's Changed

• Updated VSSDK.BuildTools version by @​cvpoienaru in #4765
• Update dump client to latest by @​nohwnd in #4724
• Fix staircase in logger by @​nohwnd in #4756
• Create a proper MSBuild ToolTask based VSTestTask by @​nohwnd in #2702
• Fix CPU is consumed by polling frequently when there is no subscriber by @​nohwnd, @​cvpoienaru in #4735
• Remove javascript in HtmlLogger by @​daveMueller in #4744
• Update VSIX metadata by @​nohwnd in #4550
• Add platform guard by @​dotMorten in #4737

Full Changelog: microsoft/vstest@v17.9.0-preview-23531-01...v17.9.0-preview-23577-04

v17.9.0-preview-23531-01

What's Changed

Full Changelog: microsoft/vstest@v17.9.0-preview-23503-02...v17.9.0-preview-23531-01

v17.9.0-preview-23503-02

What's Changed

• Remove dependency on Nuget.Frameworks by @​nohwnd in #4693

Full Changelog: microsoft/vstest@v17.8.0-release-23468-02...v17.9.0-preview-23503-02

Commits

• a77b8d5 Update dependencies from https://dev.azure.com/devdiv/DevDiv/_git/vs-code-cov...
• 60eca4b Disable testhost prestart (#4833) (#4836)
• 053d711 Replaced obsolete NuGetAuthenticate@0 with NuGetAuthenticate@1 (#4800)
• f33b3e4 Fixed version in tests (#4790)
• f8d273c Changed pre-release label version (#4786)
• 2cda152 Update dependencies from https://dev.azure.com/devdiv/DevDiv/_git/vs-code-cov...
• 0b98146 Update dependencies from https://dev.azure.com/devdiv/DevDiv/_git/vs-code-cov...
• e017f62 Update dependencies from https://dev.azure.com/devdiv/DevDiv/_git/vs-code-cov...
• 4572ac3 Update dependencies from https://dev.azure.com/devdiv/DevDiv/_git/vs-code-cov...
• 9ba4078 [main] Update dependencies from dotnet/arcade (#4767)
• Additional commits viewable in compare view

Updates xunit from 2.6.2 to 2.8.0

Commits

• be260b3 v2.8.0
• a8ceb66 #783: Add -useansicolor flag to console runner (v2)
• 7b0ff93 Don't show /aggressive with unlimited threads
• 46cdf06 Support parallel algorithm in MSBuild runner
• b4aa876 Support multipler syntax in MSBuild runner
• 6790b48 Add aggressive display to TestFrameworkEnvironment reported by XunitTestAssem...
• 3dd7e91 Update mocks to make CollectionBehaviorAttribute property values optional
• 4c82dea Asking for default threads should set 0, not null
• d73cdef Should not try to use a semaphore when we've been asked for unlimited threads
• 3722e54 Enable multiplier style max threads support
• Additional commits viewable in compare view

Updates xunit.runner.visualstudio from 2.5.7 to 2.8.0

Commits

• 6438bb8 v2.8.0
• 2afd4cd Pick up latest dependencies
• b8be108 Add multiplier format support to RunSettings
• 3c2e493 Update to 2.7.2-pre.17 and support Xunit.ParallelAlgorithm in RunSetttings
• 144931e Missing height on version
• 4315921 Fix concurrency bug in AssemblyHelper (#407)
• 8617393 Bump up to 2.5.9-pre
• bd6d97b v2.5.8
• 48cbb29 Add regex evaluation timeout (#404)
• 7f137fe Bump up to 2.5.8-pre
• See full diff in compare view

Updates Microsoft.AspNetCore.OpenApi from 7.0.13 to 7.0.18

Release notes

Sourced from Microsoft.AspNetCore.OpenApi's releases.

.NET 7.0.18

Release

.NET 7.0.17

Release

.NET 7.0.16

Release

.NET 7.0.15

Release

.NET 7.0.14

Release

What's Changed

• [release/7.0] Update jquery-validation to v1.19.5 by @​github-actions in dotnet/aspnetcore#50483
• Merging internal commits for release/7.0 by @​vseanreesermsft in dotnet/aspnetcore#50660
• [release/7.0] Fix 6.0 SiteExtension version by @​wtgodbe in dotnet/aspnetcore#50708
• Update branding to 7.0.13 by @​vseanreesermsft in dotnet/aspnetcore#51116
• [release/7.0] (deps): Bump src/submodules/googletest from 8a6feab to e47544a by @​dependabot in dotnet/aspnetcore#51051
• [release/7.0] Fix DragDrop_CanTrigger() flakiness by @​MackinnonBuck in dotnet/aspnetcore#51141
• [release/7.0] Dispose CTS in HubConnection streaming by @​github-actions in dotnet/aspnetcore#51138
• Merging internal commits for release/7.0 by @​vseanreesermsft in dotnet/aspnetcore#51266
• [release/7.0] Update dependencies from dotnet/arcade by @​dotnet-maestro in dotnet/aspnetcore#51327
• Update branding to 7.0.14 by @​vseanreesermsft in dotnet/aspnetcore#51479

Full Changelog: dotnet/aspnetcore@v7.0.13...v7.0.14

Commits

• f050ae0 Merged PR 38311: [internal/release/7.0] Update dependencies from dnceng/inter...
• 3707caa Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ru...
• f0ffaf8 Merged PR 38241: [internal/release/7.0] Update dependencies from dnceng/inter...
• e6cf755 Update dependencies from https://dev.azure.com/dnceng/internal/_git/dotnet-ef...
• 27cdc53 Merged PR 38192: Local dependencies updated based on build with BAR id 217277...
• cc12b38 Local dependencies updated based on build with BAR id 217277 (20240313.20 fro...
• 111d9f6 Merged PR 38171: [internal/release/7.0] Merge from public
• d8bc595 Update dependencies from https://github.com/dotnet/source-build-externals bui...
• 660cba7 Merged PR 37867: [internal/release/7.0] Update dependencies from dnceng/inter...
• 91ade97 Merge in 'release/7.0' changes
• Additional commits viewable in compare view

Updates Microsoft.IdentityModel.JsonWebTokens from 7.1.2 to 7.5.1

Release notes

Sourced from Microsoft.IdentityModel.JsonWebTokens's releases.

7.5.1

Performance Improvements:

• Use Base64.DecodeFromUtf8InPlace for base64 decode that saves 12% on token read time. Note that JsonWebToken no longer throws ArgumentOutOfRangeException and ArgumentException exceptions. See PR #2504. By @​keegan-caruso.

Fundamentals:

• Moved token lifetime validation logic to an internal static class. See PR #2547. By @​kellyyangsong.

Bug Fix:

• Contribution from @​martinb69 to fix correct parsing of UserInfoEndpoint. See issue #2548 for details.

7.5.0

New Features:

Supports the 1.1 version of the Microsoft Entra ID Endpoint #2503

What's Changed

• Marcinzo/issuervalidatorv11 by @​MZOLN in AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet#2503

Full Changelog: AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet@v7.4.1...7.5.0

7.4.1

Bug Fixes:

• SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
• JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

• Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
• Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
• Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.4.0-preview1

... (truncated)

Changelog

Sourced from Microsoft.IdentityModel.JsonWebTokens's changelog.

7.5.1

Performance Improvements:

• Use Base64.DecodeFromUtf8InPlace for base64 decode that saves 12% on token read time. Note that JsonWebToken no longer throws ArgumentOutOfRangeException and ArgumentException exceptions. See PR #2504.

Fundamentals:

• Moved token lifetime validation logic to an internal static class. See PR #2547.

Bug Fix:

• Contribution from @​martinb69 to fix correct parsing of UserInfoEndpoint. See issue #2548 for details.

7.5.0

New features

• Supports the 1.1 version of the Microsoft Entra ID Endpoint #2503

7.4.1

Bug Fixes:

• SamlSecurityTokenHandler and Saml2SecurityTokenHandler now can fetch configuration when validating SAML issuer and signature. See PR #2412
• JsonWebToken.ReadToken now correctly checks Dot3 index in JWE. See PR #2501

Engineering Excellence:

• Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityModel.Protocols, which already depends on it via Microsoft.IdentityModel.Tokens. See PR #2508
• Adjust uppercase json serialization tests to fix an unreliable test method, add consistency to naming. See PR #2512
• Disable the 'restore' and 'build' steps of 'build and pack' in build.sh, improving speed. See PR #2521

7.4.0

New Features:

• Introduced an injection point for external metadata management and adjusted the issuer Last Known Good (LKG) to maintain the state within the issuer validator. See PR #2480.
• Made an internal virtual method public, enabling users to provide signature providers. See PR #2497.

Performance Improvements:

• Added a new JsonWebToken constructor that accepts Memory for improved performance, along with enhancements to existing constructors. More information can be found in issue #2487 and in PR #2458.

Fundamentals:

• Resolved the issue of duplicated log messages in the source code and made IDX10506 log message more specific. For more details, refer to PR #2481.
• Enhanced Json serialization by ensuring the complete object is always read. This improvement can be found in PR #2491.

Engineering Excellence:

• Streamlined the build and release process by replacing the dependency on updateAssemblyInfo.ps1 with the Version property. Check out the details in PR #2494.
• Excluded the packing of Benchmark and TestApp projects for a more efficient process. Details available in PR #2496.

7.3.1

Bug Fixes:

• Replace propertyName with MetadataName constant. See issue #2471 for details.
• Fix 6x to 7x regression where mixed cases OIDC json was not correctly process. See #2404 and #2402 for details.

... (truncated)

Commits

• 84fb893 Update OpenIdConnectConfigurationSerializer.cs (#2550)
• ceeb23c Use Base64.DecodeFromUtf8InPlace (#2504)
• a0ffac3 Move ValidateLifetime logic to internal method (#2547)
• f5f3f79 update codeql versions (#2541)
• fc72903 current version to 7.5.1 (#2539)
• 9c7a411 fix log message typo (#2538)
• afeb7e5 Marcinzo/issuervalidatorv11 (#2503)
• 782602b edit changelog for 7.4.1 (#2525)
• c1c24e2 Remove reference to Microsoft.IdentityModel.Logging in Microsoft.IdentityMode...
• 795bbf0 Revert whitespace change in tests
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Looks like these dependencies are updatable in another way, so this is no longer needed.