chore(deps): update nuget non-major dependencies #112

renovate · 2024-05-15T22:53:34Z

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
Azure.Identity (source)	`1.11.2` -> `1.11.3`
Azure.Storage.Blobs (source)	`12.19.1` -> `12.20.0`
Azure.Storage.Files.Shares (source)	`12.17.1` -> `12.18.0`
Azure.Storage.Queues (source)	`12.17.1` -> `12.18.0`
Microsoft.AspNetCore.Mvc.Testing (source)	`8.0.4` -> `8.0.5`
Microsoft.AspNetCore.OpenApi (source)	`8.0.4` -> `8.0.5`
Microsoft.Azure.Functions.Worker.Extensions.Http	`3.1.0` -> `3.2.0`
Microsoft.IdentityModel.Logging	`7.5.1` -> `7.6.0`
Microsoft.IdentityModel.Tokens	`7.5.1` -> `7.6.0`
Microsoft.NET.Test.Sdk	`17.9.0` -> `17.10.0`
Npgsql	`8.0.2` -> `8.0.3`
Npgsql.DependencyInjection	`8.0.2` -> `8.0.3`
Swashbuckle.AspNetCore	`6.5.0` -> `6.6.2`
xunit	`2.8.0` -> `2.8.1`
xunit.runner.visualstudio	`2.8.0` -> `2.8.1`

Release Notes

Azure/azure-sdk-for-net (Azure.Identity)

`v1.11.3`

1.11.3 (2024-05-07)

Bugs Fixed

Fixed a regression in DefaultAzureCredential probe request behavior for IMDS managed identity environments. #43796

dotnet/aspnetcore (Microsoft.AspNetCore.Mvc.Testing)

`v8.0.5`: .NET 8.0.5

Release

What's Changed

[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in https://github.com/dotnet/aspnetcore/pull/54744
Update branding to 8.0.5 by @vseanreesermsft in https://github.com/dotnet/aspnetcore/pull/54907
[release/8.0] Convert to 1ES templates by @RussKie in https://github.com/dotnet/aspnetcore/pull/54660
Increase logs and delays in CanLaunchPhotinoWebViewAndClickButton by @Eilon in https://github.com/dotnet/aspnetcore/pull/54608
[release/8.0] (deps): Bump src/submodules/googletest from 31993df to 77afe8e by @dependabot in https://github.com/dotnet/aspnetcore/pull/54872
[release/8.0] Reduce helix-matrix timeout to 5 hours by @github-actions in https://github.com/dotnet/aspnetcore/pull/54778
[release/8.0] Preserve RemoteAuthenticationContext during trimming if used in JS interop by @halter73 in https://github.com/dotnet/aspnetcore/pull/54655
[release/8.0] Improve usage of Type.GetType when activating types in data protection by @github-actions in https://github.com/dotnet/aspnetcore/pull/54762
[release/8.0] Fix route analyzer performance with highly concatenated strings by @github-actions in https://github.com/dotnet/aspnetcore/pull/54763
[release/8.0] Suppress .ps1 SDL errors by @wtgodbe in https://github.com/dotnet/aspnetcore/pull/54915
[release/8.0] Backport test fixes by @MackinnonBuck in https://github.com/dotnet/aspnetcore/pull/54912
[release/8.0] Skip SpotBugs for now by @wtgodbe in https://github.com/dotnet/aspnetcore/pull/54952
Merging internal commits for release/8.0 by @vseanreesermsft in https://github.com/dotnet/aspnetcore/pull/55034
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in https://github.com/dotnet/aspnetcore/pull/55061
[release/8.0] Update Wix version by @github-actions in https://github.com/dotnet/aspnetcore/pull/55101

Full Changelog: dotnet/aspnetcore@v8.0.4...v8.0.5

AzureAD/azure-activedirectory-identitymodel-extensions-for-dotnet (Microsoft.IdentityModel.Logging)

`v7.6.0`

Compare Source

=====

New Features:

Update JsonWebToken - extract and expose the method that reads the header/payload property values from the reader so it can be overridden in children classes to add any extra own logic. See issues #2581, #2583, and #2495 for details.

Bug Fixes:

JWE header algorithm is now compliant to IANA document. See issue #2089 for details.

Performance Improvements:

Reduce the number of internal array allocations that need to happen for each claim set, see PR #2596.

Fundamentals:

Add an AOT compatibility check on each PR to ensure only AOT compatible code is checked-in. See PR #2598.
Update perl scrip for OneBranch build. See PR #2602.
Add langversion 12 to benchmark tests. See PR #2601.
Removed unused build.cmd file. See PR #2605.
Create CodeQL exclusions file. See PR #2609.
Fix variable usage in AOT script. See PR #2610.
Move Microsoft.IdentityModel.Tokens delegates to a new file. See PR #2606

`v7.5.2`

Compare Source

=====

Bug Fixes:

Validate authentication tag length so a JWE with appended characters will not be considered a valid token. See issues #2201, #1641, PR #2569, and IDX10625 Wiki for details.

Fundamentals:

App Context Switches in Identity Model 7x are now documented here.

Performance Improvements:

In .NET 6 or greater, use a temporary buffer to reduce intermediate allocation in VerifyRsa/VerifyECDsa. See PR #2589 for more details.
Reduce allocations in ValidateSignature by using a collection expression instead of new List<SecurityKey> { key }, to optimize for the single element case. See PR #2586 for more details.
Remove Task allocation in AadIssuerValidator. See PR #2584 for more details.