Skip to content

deps: Bump the all-dependencies group with 9 updates #62

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
samgibsonmoj merged 1 commit into from
Dec 9, 2025
Merged

deps: Bump the all-dependencies group with 9 updates #62

samgibsonmoj merged 1 commit into from
Dec 9, 2025

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Dec 7, 2025

Updated Aspire.Hosting.AppHost from 13.0.1 to 13.0.2.

Release notes

Sourced from Aspire.Hosting.AppHost's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Full Changelog: dotnet/aspire@v13.0.1...v13.0.2

Commits viewable in compare view.

Updated Aspire.Hosting.RabbitMQ from 13.0.1 to 13.0.2.

Release notes

Sourced from Aspire.Hosting.RabbitMQ's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Full Changelog: dotnet/aspire@v13.0.1...v13.0.2

Commits viewable in compare view.

Updated Aspire.Hosting.Redis from 13.0.1 to 13.0.2.

Release notes

Sourced from Aspire.Hosting.Redis's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Full Changelog: dotnet/aspire@v13.0.1...v13.0.2

Commits viewable in compare view.

Updated Aspire.Hosting.SqlServer from 13.0.1 to 13.0.2.

Release notes

Sourced from Aspire.Hosting.SqlServer's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Full Changelog: dotnet/aspire@v13.0.1...v13.0.2

Commits viewable in compare view.

Updated Aspire.RabbitMQ.Client from 13.0.1 to 13.0.2.

Release notes

Sourced from Aspire.RabbitMQ.Client's releases.

13.0.2

This patch is updating our Project Templates for our Python starter app to ensure we depend on the latest version of React. This is out of an abundance of caution, as we don't depend on any of the react packages that were flagged as vulnerable in GHSA-fv66-9v8q-g76r.

What's Changed

Full Changelog: dotnet/aspire@v13.0.1...v13.0.2

Commits viewable in compare view.

Updated AWSSDK.Extensions.NETCore.Setup from 4.0.3.14 to 4.0.3.15.

Release notes

Sourced from AWSSDK.Extensions.NETCore.Setup's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated AWSSDK.S3 from 4.0.13.1 to 4.0.14.1.

Release notes

Sourced from AWSSDK.S3's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated AWSSDK.SecurityToken from 4.0.5.1 to 4.0.5.2.

Release notes

Sourced from AWSSDK.SecurityToken's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Sentry.Serilog from 6.0.0-preview.2-prerelease to 6.0.0-rc.2-prerelease.

Release notes

Sourced from Sentry.Serilog's releases.

6.0.0-rc.2

Fixes

  • Captured Http Client Errors on .NET 5+ now include a full stack trace in order to improve Issue grouping (#​4724)
  • Sentry Tracing middleware crashed ASP.NET Core in .NET 10 in 6.0.0-rc.1 and earlier (#​4747)

Dependencies

6.0.0-rc.1

BREAKING CHANGES

  • This release adds support for .NET 10 and drops support for net8.0-android, net8.0-ios, net8.0-maccatalyst and net8.0-windows10.0.19041.0 (#​4461)

  • Backpressure handling is now enabled by default, meaning that the SDK will monitor system health and reduce the sampling rate of events and transactions when the system is under load. When the system is determined to be healthy again, the sampling rates are returned to their original levels. (#​4615)

  • QOL improvement: Spans and Transactions now implement IDisposable so that they can be used with using statements/declarations that will automatically finish the span with a status of OK when it passes out of scope, if it has not already been finished, to be consistent with Activity classes when using OpenTelemetry (#​4627)

  • Add support for W3C traceparent header for outgoing requests (#​4661)
    This feature is disabled by default. Set PropagateTraceparent = true when initializing the SDK if to include the W3C traceparent header on outgoing requests.

  • The Structured Logs APIs are now stable: removed Experimental from SentryOptions (#​4699)

  • Added support for v3 of the Android AssemblyStore format that is used in .NET 10 and dropped support for v1 that was used in .NET 8 (#​4583)

  • CaptureFeedback now returns a SentryId and a CaptureFeedbackResult out parameter that indicate whether feedback was captured successfully and what the reason for failure was otherwise (#​4613)

  • Deprecated Sentry.Azure.Functions.Worker as very few people were using it and the functionality can easily be replaced with OpenTelemetry. We've replaced our integration with a sample showing how to do this using our OpenTelemetry package instead. (#​4693)

  • UWP support has been dropped. Future efforts will likely focus on WinUI 3, in line with Microsoft's recommendations for building Windows UI apps. (#​4686)

  • BreadcrumbLevel.Critical has been renamed to BreadcrumbLevel.Fatal for consistency with the other Sentry SDKs (#​4605)

  • SentryOptions.IsEnvironmentUser now defaults to false on MAUI. The means the User.Name will no longer be set, by default, to the name of the device (#​4606)

  • Remove unnecessary files from SentryCocoaFramework before packing (#​4602)

  • Removed obsolete APIs (#​4619)

    • Removed the unusual constructor from Sentry.Maui.BreadcrumbEvent that had been marked as obsolete. That constructor expected a IEnumerable<(string Key, string Value)>[] argument (i.e. an array of IEnumerable of tuples). If you were using this constructor, you should instead use the alternate constructor that expects just an IEnumerable of tuples: IEnumerable<(string Key, string Value)>.
    • Removed SentrySdk.CaptureUserFeedback and all associated members. Use the newer SentrySdk.CaptureFeedback instead.

  • SpanTracer and TransactionTracer are still public but these are now sealed (see also #​4627)

  • ScopeExtensions.Populate is now internal (#​4611)

    See https://develop.sentry.dev/sdk/telemetry/traces/distributed-tracing/#w3c-trace-context-header for more details.

Features

  • Support for .NET 10 (#​4461)
  • Added experimental support for Session Replay on iOS (#​4664)
  • QOL features for Unity
    • The SDK now provides a IsSessionActive to allow checking the session state (#​4662)
    • The SDK now makes use of the new SessionEndStatus Unhandled when capturing an unhandled but non-terminal exception, i.e. through the UnobservedTaskExceptionIntegration (#​4633, #​4653)
  • Implemented instance isolation so that multiple instances of the Sentry SDK can be instantiated inside the same process when using the Caching Transport (#​4498)
  • Extended the App context by app_memory that can hold the amount of memory used by the application in bytes. (#​4707)

Fixes

  • Memory leak when finishing an unsampled Transaction that has started unsampled Spans (#​4717)
  • Deliver system breadcrumbs in the main thread on Android (#​4671)
  • The Serilog integration captures Structured Logs (when enabled) independently of captured Events and added Breadcrumbs (#​4691)
  • The SDK avoids redundant scope sync after transaction finish (#​4623)
  • sentry-native is now automatically disabled for WASM applications (#​4631)

Dependencies

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot dependabot bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Dec 7, 2025
@dependabot dependabot bot requested review from a team as code owners December 7, 2025 04:14
@dependabot dependabot bot added dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code labels Dec 7, 2025
@dependabot @samgibsonmoj
deps: Bump the all-dependencies group with 9 updates
2149aff 
Bumps Aspire.Hosting.AppHost from 13.0.1 to 13.0.2
Bumps Aspire.Hosting.RabbitMQ from 13.0.1 to 13.0.2
Bumps Aspire.Hosting.Redis from 13.0.1 to 13.0.2
Bumps Aspire.Hosting.SqlServer from 13.0.1 to 13.0.2
Bumps Aspire.RabbitMQ.Client from 13.0.1 to 13.0.2
Bumps AWSSDK.Extensions.NETCore.Setup from 4.0.3.14 to 4.0.3.15
Bumps AWSSDK.S3 from 4.0.13.1 to 4.0.14.1
Bumps AWSSDK.SecurityToken from 4.0.5.1 to 4.0.5.2
Bumps Sentry.Serilog from 6.0.0-preview.2-prerelease to 6.0.0-rc.2-prerelease

---
updated-dependencies:
- dependency-name: Aspire.Hosting.AppHost
  dependency-version: 13.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: Aspire.Hosting.RabbitMQ
  dependency-version: 13.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: Aspire.Hosting.Redis
  dependency-version: 13.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: Aspire.Hosting.SqlServer
  dependency-version: 13.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: Aspire.RabbitMQ.Client
  dependency-version: 13.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: AWSSDK.Extensions.NETCore.Setup
  dependency-version: 4.0.3.15
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: AWSSDK.S3
  dependency-version: 4.0.14.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: AWSSDK.SecurityToken
  dependency-version: 4.0.5.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
- dependency-name: Sentry.Serilog
  dependency-version: 6.0.0-rc.2-prerelease
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: all-dependencies
...

Signed-off-by: dependabot[bot] <[email protected]>
@samgibsonmoj samgibsonmoj force-pushed the dependabot/nuget/develop/all-dependencies-fcc70713c3 branch from 22b73fc to 2149aff Compare December 8, 2025 10:50
@samgibsonmoj samgibsonmoj merged commit 81b4dbc into develop Dec 9, 2025
2 checks passed
@samgibsonmoj samgibsonmoj deleted the dependabot/nuget/develop/all-dependencies-fcc70713c3 branch December 9, 2025 17:39
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@samgibsonmoj