Bump BCrypt.Net-Next and 8 others by dependabot[bot] · Pull Request #12 · tubearrteam/STLComplianceV2

dependabot · 2026-05-28T17:35:24Z

Pinned BCrypt.Net-Next at 4.2.0.

Release notes

Sourced from BCrypt.Net-Next's releases.

4.2.0

Drops dotnet 2.0 / 3.5 support (as msft ripped it out of windows 11 and set the new standalone installers minimum windows version to an inside release https://devblogs.microsoft.com/dotnet/dotnet-framework-3-5-moves-to-standalone-deployment-in-new-versions-of-windows/)
Renames assembly-name to remove dots as it causes PRI249 warning

Full Changelog: BcryptNet/bcrypt.net@v4.1.0...v4.2.0

4.1.0 What's Changed

Bump xunit.runner.visualstudio from 2.4.3 to 2.4.4 by @dependabot[bot] in Bump xunit.runner.visualstudio from 2.4.3 to 2.4.4 BcryptNet/bcrypt.net#107
Bump xunit.runner.visualstudio from 2.4.4 to 2.4.5 by @dependabot[bot] in Bump xunit.runner.visualstudio from 2.4.4 to 2.4.5 BcryptNet/bcrypt.net#108
Bump Microsoft.NET.Test.Sdk from 17.1.0 to 17.2.0 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.1.0 to 17.2.0 BcryptNet/bcrypt.net#109
Bump System.Memory from 4.5.4 to 4.5.5 by @dependabot[bot] in Bump System.Memory from 4.5.4 to 4.5.5 BcryptNet/bcrypt.net#113
Bump Microsoft.NET.Test.Sdk from 17.2.0 to 17.3.0 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.2.0 to 17.3.0 BcryptNet/bcrypt.net#115
Bump xunit from 2.4.1 to 2.4.2 by @dependabot[bot] in Bump xunit from 2.4.1 to 2.4.2 BcryptNet/bcrypt.net#114
Bump Microsoft.NET.Test.Sdk from 17.3.0 to 17.3.1 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.3.0 to 17.3.1 BcryptNet/bcrypt.net#118
Bump BenchmarkDotNet from 0.13.2 to 0.13.4 by @dependabot[bot] in Bump BenchmarkDotNet from 0.13.2 to 0.13.4 BcryptNet/bcrypt.net#129
Bump Microsoft.NET.Test.Sdk from 17.3.1 to 17.4.1 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.3.1 to 17.4.1 BcryptNet/bcrypt.net#126
Use License Expression for NuGet Package and add URLs by @mus65 in Use License Expression for NuGet Package and add URLs BcryptNet/bcrypt.net#128
Bump BenchmarkDotNet from 0.13.4 to 0.13.5 by @dependabot[bot] in Bump BenchmarkDotNet from 0.13.4 to 0.13.5 BcryptNet/bcrypt.net#131
Bump Microsoft.NET.Test.Sdk from 17.4.1 to 17.5.0 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.4.1 to 17.5.0 BcryptNet/bcrypt.net#133
Bump Microsoft.NET.Test.Sdk from 17.5.0 to 17.6.0 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.5.0 to 17.6.0 BcryptNet/bcrypt.net#134
Bump Microsoft.NET.Test.Sdk from 17.6.0 to 17.6.1 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.6.0 to 17.6.1 BcryptNet/bcrypt.net#135
Bump xunit.runner.visualstudio from 2.4.5 to 2.5.0 by @dependabot[bot] in Bump xunit.runner.visualstudio from 2.4.5 to 2.5.0 BcryptNet/bcrypt.net#140
Bump Microsoft.NET.Test.Sdk from 17.6.1 to 17.6.3 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.6.1 to 17.6.3 BcryptNet/bcrypt.net#138
Bump BenchmarkDotNet from 0.13.5 to 0.13.6 by @dependabot[bot] in Bump BenchmarkDotNet from 0.13.5 to 0.13.6 BcryptNet/bcrypt.net#141
Bump Microsoft.Windows.Compatibility from 6.0.0 to 6.0.6 in /IntegrationTest/TestVariousVersionsOfDotNet/WindowsFormAppViaDotnetTools by @dependabot[bot] in Bump Microsoft.Windows.Compatibility from 6.0.0 to 6.0.6 in /IntegrationTest/TestVariousVersionsOfDotNet/WindowsFormAppViaDotnetTools BcryptNet/bcrypt.net#137
Bump xunit from 2.4.2 to 2.5.1 by @dependabot[bot] in Bump xunit from 2.4.2 to 2.5.1 BcryptNet/bcrypt.net#148
Bump BenchmarkDotNet from 0.13.6 to 0.13.8 by @dependabot[bot] in Bump BenchmarkDotNet from 0.13.6 to 0.13.8 BcryptNet/bcrypt.net#146
Bump Microsoft.NET.Test.Sdk from 17.6.3 to 17.7.2 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.6.3 to 17.7.2 BcryptNet/bcrypt.net#145
Bump xunit.runner.visualstudio from 2.5.0 to 2.5.1 by @dependabot[bot] in Bump xunit.runner.visualstudio from 2.5.0 to 2.5.1 BcryptNet/bcrypt.net#147
Bump xunit from 2.5.1 to 2.5.3 by @dependabot[bot] in Bump xunit from 2.5.1 to 2.5.3 BcryptNet/bcrypt.net#152
Bump Microsoft.NET.Test.Sdk from 17.7.2 to 17.9.0 by @dependabot[bot] in Bump Microsoft.NET.Test.Sdk from 17.7.2 to 17.9.0 BcryptNet/bcrypt.net#171
Bump xunit from 2.5.3 to 2.8.0 by @dependabot[bot] in Bump xunit from 2.5.3 to 2.8.0 BcryptNet/bcrypt.net#174

New Contributors

@mus65 made their first contribution in Use License Expression for NuGet Package and add URLs BcryptNet/bcrypt.net#128

Full Changelog: BcryptNet/bcrypt.net@4.0.3...v4.1.0

Commits viewable in compare view.

Pinned Npgsql.EntityFrameworkCore.PostgreSQL at 10.0.2.

Release notes

Sourced from Npgsql.EntityFrameworkCore.PostgreSQL's releases.

10.0.2

Milestone issue

What's Changed

Translate bytea.Any() as length > 0 by @georg-jung in Translate bytea.Any() as length > 0 npgsql/efcore.pg#3817

Full Changelog: npgsql/efcore.pg@v10.0.1...v10.0.2

Commits viewable in compare view.

Pinned OpenTelemetry.Instrumentation.AspNetCore at 1.15.2.

Release notes

Sourced from OpenTelemetry.Instrumentation.AspNetCore's releases.

1.15.2

NuGet: OpenTelemetry.Exporter.Geneva v1.15.2
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
See CHANGELOG for details.

1.15.1

NuGet: OpenTelemetry.Instrumentation.AspNet v1.15.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AspNet.TelemetryHttpModule v1.15.1
- Propagate baggage before Activity is created.
  (#3820)
See CHANGELOG for details.

1.15.1-beta.2

NuGet: OpenTelemetry.Instrumentation.Wcf v1.15.1-beta.2
- Revert System.Security.Cryptography.Xml dependency version update for
  .NET 8, 9, and 10 to 4.7.1 released in 1.15.1-beta.1 introduced in #4103.
  (#4266)
See CHANGELOG for details.

1.15.1-beta.1

NuGet: OpenTelemetry.Extensions.Enrichment v1.15.1-beta.1
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
- Fixed trace enrichment callbacks so exceptions thrown by user-provided
  enrichers or enrichment actions no longer interrupt trace processing.
  (#4165)
See CHANGELOG for details.

1.15.1-alpha.1

NuGet: OpenTelemetry.Instrumentation.EventCounters v1.15.1-alpha.1
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
See CHANGELOG for details.

1.15.0

NuGet: OpenTelemetry.Exporter.OneCollector v1.15.0
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-rc.1

NuGet: OpenTelemetry.Instrumentation.SqlClient v1.15.0-rc.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-beta.2

NuGet: OpenTelemetry.Resources.Host v1.15.0-beta.2
- Breaking Change: Fixed host.arch attribute to return amd64 instead of
  x64 for X64 architecture to comply with OpenTelemetry Semantic Conventions.
  (#3811)
See CHANGELOG for details.

1.15.0-beta.1

NuGet: OpenTelemetry.Extensions.Enrichment v1.15.0-beta.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-alpha.1

NuGet: OpenTelemetry.Instrumentation.EventCounters v1.15.0-alpha.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.14.2

NuGet: OpenTelemetry.Extensions.AWS v1.14.2

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWS v1.14.2
- Update minimal supported version of AWSSDK.Core to 4.0.3.3.
  Older versions are affected by CVE-2026-22611.
  (#3683)
See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWSLambda v1.14.2

No notable changes.

See CHANGELOG for details.

1.14.1

NuGet: OpenTelemetry.Extensions.AWS v1.14.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWS v1.14.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWSLambda v1.14.1
- Fix issue when using ADOT auto-instrumentation which includes a version of
  OpenTelemetry.Instrumentation.AWSLambda in the Lambda layer. In this scenario
  nothing is forcing the NuGet resolution to include the updated version of
  Amazon.Lambda.Core that has the reworked logic
  for determining the trace id.
  (#3629)
See CHANGELOG for details.

1.14.0

NuGet: OpenTelemetry.Instrumentation.AspNet v1.14.0

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AspNet.TelemetryHttpModule v1.14.0

No notable changes.

See CHANGELOG for details.

1.14.0-rc.1

NuGet: OpenTelemetry.Instrumentation.SqlClient v1.14.0-rc.1
- Remove support for the OTEL_SEMCONV_STABILITY_OPT_IN configuration option.
  Previously, the old conventions were emitted by default with the option to emit
  the stable conventions. Now, only the stable conventions are supported.
  (#3592)
- Improve SQL parsing for sanitization and summary generation. Support additional
  cases for escaped identifiers. Optimize performance of parsing logic.
  (#3627)
- Improve SQL parsing for sanitization for Unicode string literals.
  (#3662)
- Sanitize the object name for SQL query text using the LOGIN or USER keywords and
  remove from query summaries.
  (#3663)
- Improve SQL parsing to generate query summaries for more T-SQL keywords.
  (#3671)
- Make additional attributes available on Activity start. The full list of
  attributes available at time of sampling now conforms with the
  semantic conventions.
  (#3675)
- Metrics and spans report telemetry schema URL v1.33.0.
  (#3680)
See CHANGELOG for details.

1.14.0-beta.2

NuGet: OpenTelemetry.Instrumentation.Hangfire v1.14.0-beta.2
- Add metrics instrumentation following a POC/draft definition of workflow metrics
  defined as part of semantic-conventions/#1688.
  (#3258)
See CHANGELOG for details.

1.14.0-alpha.1

NuGet: OpenTelemetry.Extensions.Enrichment.Http v1.14.0-alpha.1

Initial release of OpenTelemetry.Extensions.Enrichment.Http project.

See CHANGELOG for details.

Commits viewable in compare view.

Pinned OpenTelemetry.Instrumentation.Http at 1.15.1.

Release notes

Sourced from OpenTelemetry.Instrumentation.Http's releases.

1.15.1

NuGet: OpenTelemetry.Instrumentation.AspNet v1.15.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AspNet.TelemetryHttpModule v1.15.1
- Propagate baggage before Activity is created.
  (#3820)
See CHANGELOG for details.

1.15.1-beta.2

NuGet: OpenTelemetry.Instrumentation.Wcf v1.15.1-beta.2
- Revert System.Security.Cryptography.Xml dependency version update for
  .NET 8, 9, and 10 to 4.7.1 released in 1.15.1-beta.1 introduced in #4103.
  (#4266)
See CHANGELOG for details.

1.15.1-beta.1

NuGet: OpenTelemetry.Extensions.Enrichment v1.15.1-beta.1
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
- Fixed trace enrichment callbacks so exceptions thrown by user-provided
  enrichers or enrichment actions no longer interrupt trace processing.
  (#4165)
See CHANGELOG for details.

1.15.1-alpha.1

NuGet: OpenTelemetry.Instrumentation.EventCounters v1.15.1-alpha.1
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
See CHANGELOG for details.

1.15.0

NuGet: OpenTelemetry.Exporter.OneCollector v1.15.0
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-rc.1

NuGet: OpenTelemetry.Instrumentation.SqlClient v1.15.0-rc.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-beta.2

NuGet: OpenTelemetry.Resources.Host v1.15.0-beta.2
- Breaking Change: Fixed host.arch attribute to return amd64 instead of
  x64 for X64 architecture to comply with OpenTelemetry Semantic Conventions.
  (#3811)
See CHANGELOG for details.

1.15.0-beta.1

NuGet: OpenTelemetry.Extensions.Enrichment v1.15.0-beta.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-alpha.1

NuGet: OpenTelemetry.Instrumentation.EventCounters v1.15.0-alpha.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.14.2

NuGet: OpenTelemetry.Extensions.AWS v1.14.2

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWS v1.14.2
- Update minimal supported version of AWSSDK.Core to 4.0.3.3.
  Older versions are affected by CVE-2026-22611.
  (#3683)
See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWSLambda v1.14.2

No notable changes.

See CHANGELOG for details.

1.14.1

NuGet: OpenTelemetry.Extensions.AWS v1.14.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWS v1.14.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWSLambda v1.14.1
- Fix issue when using ADOT auto-instrumentation which includes a version of
  OpenTelemetry.Instrumentation.AWSLambda in the Lambda layer. In this scenario
  nothing is forcing the NuGet resolution to include the updated version of
  Amazon.Lambda.Core that has the reworked logic
  for determining the trace id.
  (#3629)
See CHANGELOG for details.

1.14.0

NuGet: OpenTelemetry.Instrumentation.AspNet v1.14.0

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AspNet.TelemetryHttpModule v1.14.0

No notable changes.

See CHANGELOG for details.

1.14.0-rc.1

NuGet: OpenTelemetry.Instrumentation.SqlClient v1.14.0-rc.1
- Remove support for the OTEL_SEMCONV_STABILITY_OPT_IN configuration option.
  Previously, the old conventions were emitted by default with the option to emit
  the stable conventions. Now, only the stable conventions are supported.
  (#3592)
- Improve SQL parsing for sanitization and summary generation. Support additional
  cases for escaped identifiers. Optimize performance of parsing logic.
  (#3627)
- Improve SQL parsing for sanitization for Unicode string literals.
  (#3662)
- Sanitize the object name for SQL query text using the LOGIN or USER keywords and
  remove from query summaries.
  (#3663)
- Improve SQL parsing to generate query summaries for more T-SQL keywords.
  (#3671)
- Make additional attributes available on Activity start. The full list of
  attributes available at time of sampling now conforms with the
  semantic conventions.
  (#3675)
- Metrics and spans report telemetry schema URL v1.33.0.
  (#3680)
See CHANGELOG for details.

1.14.0-beta.2

NuGet: OpenTelemetry.Instrumentation.Hangfire v1.14.0-beta.2
- Add metrics instrumentation following a POC/draft definition of workflow metrics
  defined as part of semantic-conventions/#1688.
  (#3258)
See CHANGELOG for details.

1.14.0-alpha.1

NuGet: OpenTelemetry.Extensions.Enrichment.Http v1.14.0-alpha.1

Initial release of OpenTelemetry.Extensions.Enrichment.Http project.

See CHANGELOG for details.

Commits viewable in compare view.

Pinned OpenTelemetry.Instrumentation.Runtime at 1.15.1.

Release notes

Sourced from OpenTelemetry.Instrumentation.Runtime's releases.

1.15.1

NuGet: OpenTelemetry.Instrumentation.AspNet v1.15.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AspNet.TelemetryHttpModule v1.15.1
- Propagate baggage before Activity is created.
  (#3820)
See CHANGELOG for details.

1.15.1-beta.2

NuGet: OpenTelemetry.Instrumentation.Wcf v1.15.1-beta.2
- Revert System.Security.Cryptography.Xml dependency version update for
  .NET 8, 9, and 10 to 4.7.1 released in 1.15.1-beta.1 introduced in #4103.
  (#4266)
See CHANGELOG for details.

1.15.1-beta.1

NuGet: OpenTelemetry.Extensions.Enrichment v1.15.1-beta.1
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
- Fixed trace enrichment callbacks so exceptions thrown by user-provided
  enrichers or enrichment actions no longer interrupt trace processing.
  (#4165)
See CHANGELOG for details.

1.15.1-alpha.1

NuGet: OpenTelemetry.Instrumentation.EventCounters v1.15.1-alpha.1
- Updated OpenTelemetry core component version(s) to 1.15.3.
  (#4166)
See CHANGELOG for details.

1.15.0

NuGet: OpenTelemetry.Exporter.OneCollector v1.15.0
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-rc.1

NuGet: OpenTelemetry.Instrumentation.SqlClient v1.15.0-rc.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-beta.2

NuGet: OpenTelemetry.Resources.Host v1.15.0-beta.2
- Breaking Change: Fixed host.arch attribute to return amd64 instead of
  x64 for X64 architecture to comply with OpenTelemetry Semantic Conventions.
  (#3811)
See CHANGELOG for details.

1.15.0-beta.1

NuGet: OpenTelemetry.Extensions.Enrichment v1.15.0-beta.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.15.0-alpha.1

NuGet: OpenTelemetry.Instrumentation.EventCounters v1.15.0-alpha.1
- Updated OpenTelemetry core component version(s) to 1.15.0.
  (#3721)
See CHANGELOG for details.

1.14.2

NuGet: OpenTelemetry.Extensions.AWS v1.14.2

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWS v1.14.2
- Update minimal supported version of AWSSDK.Core to 4.0.3.3.
  Older versions are affected by CVE-2026-22611.
  (#3683)
See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWSLambda v1.14.2

No notable changes.

See CHANGELOG for details.

1.14.1

NuGet: OpenTelemetry.Extensions.AWS v1.14.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWS v1.14.1

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AWSLambda v1.14.1
- Fix issue when using ADOT auto-instrumentation which includes a version of
  OpenTelemetry.Instrumentation.AWSLambda in the Lambda layer. In this scenario
  nothing is forcing the NuGet resolution to include the updated version of
  Amazon.Lambda.Core that has the reworked logic
  for determining the trace id.
  (#3629)
See CHANGELOG for details.

1.14.0

NuGet: OpenTelemetry.Instrumentation.AspNet v1.14.0

No notable changes.

See CHANGELOG for details.
NuGet: OpenTelemetry.Instrumentation.AspNet.TelemetryHttpModule v1.14.0

No notable changes.

See CHANGELOG for details.

1.14.0-rc.1

NuGet: OpenTelemetry.Instrumentation.SqlClient v1.14.0-rc.1
- Remove support for the OTEL_SEMCONV_STABILITY_OPT_IN configuration option.
  Previously, the old conventions were emitted by default with the option to emit
  the stable conventions. Now, only the stable conventions are supported.
  (#3592)
- Improve SQL parsing for sanitization and summary generation. Support additional
  cases for escaped identifiers. Optimize performance of parsing logic.
  (#3627)
- Improve SQL parsing for sanitization for Unicode string literals.
  (#3662)
- Sanitize the object name for SQL query text using the LOGIN or USER keywords and
  remove from query summaries.
  (#3663)
- Improve SQL parsing to generate query summaries for more T-SQL keywords.
  (#3671)
- Make additional attributes available on Activity start. The full list of
  attributes available at time of sampling now conforms with the
  semantic conventions.
  (#3675)
- Metrics and spans report telemetry schema URL v1.33.0.
  (#3680)
See CHANGELOG for details.

1.14.0-beta.2

NuGet: OpenTelemetry.Instrumentation.Hangfire v1.14.0-beta.2
- Add metrics instrumentation following a POC/draft definition of workflow metrics
  defined as part of semantic-conventions/#1688.
  (#3258)
See CHANGELOG for details.

1.14.0-alpha.1

NuGet: OpenTelemetry.Extensions.Enrichment.Http v1.14.0-alpha.1

Initial release of OpenTelemetry.Extensions.Enrichment.Http project.

See CHANGELOG for details.

Commits viewable in compare view.

Pinned System.IdentityModel.Tokens.Jwt at 8.18.0.

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

8.18.0 New Features

Introduced a new interface IConfigurationEventHandlerContextAware<T> that provides context to the configuration event handler implementation, allowing it to optionally bypass a cache lookup. See PR #3444.
Added Microsoft.IdentityModel.Dpop — a new package implementing DPoP (Demonstrating Proof-of-Possession) per RFC 9449. Provides both client-side and server-side proof validation with no System.Net.Http dependency. See PR #3443.

8.17.0 Dependencies

Downgrade MicrosoftExtensionsLoggingAbstractionsVersion to 8.0.0 on .NET 10. See PR #3435.

8.16.0 New Features

Add telemetry around signature validation. See PR #3415 for details.

Fundamentals

Fix FileVersion format to use two-digit year and day of year. See PR #3389 for details.

8.15.0 New Features

Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
See PR #2377 for details.

Bug Fixes

Sanitize logs to avoid leaking sensitive data
Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
See PR #3316 for details.
Optimize log sanitization with SearchValues
Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
See PR #3341 for details.
Update test for IDX10400
Adjusted the IDX10400 test to align with the current behavior and error messaging.
See PR #3314 for details.

Fundamentals

Add supported algorithm tests
Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
See PR #3296 for details.
Migrate repository agent rules from .clinerules to agents.md
Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
See PR #3313 for details.
Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
See PR #3356 for details.
Disable code coverage comments
Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
See PR #3349 for details.
Fix CodeQL alerts
Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
See PR #3364 for details.

.NET 10 / SDK and tooling updates

Building with .NET 10 preview / RC 1
Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
See PRs #3287, #3357, and #3358 for details.
Fix .NET 10 test execution consistency
Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
See PR #3337 for details.
Update project files and workflows for .NET 10.0 compatibility
Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
See PR #3363 for details.
Update .NET version to meet CG compliance
Updated the .NET version references to be compliant with corporate governance (CG) requirements.
See PR #3353 for details.
Update Coverlet collector and test SDK
- Bumped CoverletCollectorVersion to 6.0.4.
  See PR #3333 for details.
- Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
  ... (truncated)

Commits viewable in compare view.

Updated WebPush from 1.0.12 to 1.0.13.

Release notes

Sourced from WebPush's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated xunit.runner.visualstudio from 3.1.4 to 3.1.5.

Release notes

Sourced from xunit.runner.visualstudio's releases.

3.1.5

Release notes: https://xunit.net/releases/visualstudio/3.1.5

Commits viewable in compare view.

Updated Xunit.SkippableFact from 1.5.23 to 1.5.61.

Release notes

Sourced from Xunit.SkippableFact's releases.

1.5.61 What's Changed

Document support for class-level OS targeting by @AArnott in Document support for class-level OS targeting AArnott/Xunit.SkippableFact#50
Add support for AggregateException in SkippableFact by @Copilot in Add support for AggregateException in SkippableFact AArnott/Xunit.SkippableFact#80
Fix wrong failed state for rider by @JKamsker in Fix wrong failed state for rider AArnott/Xunit.SkippableFact#105

New Contributors

@renovate[bot] made their first contribution in Update dependency ubuntu to v24 AArnott/Xunit.SkippableFact#64
@github-actions[bot] made their first contribution in Merge latest Library.Template AArnott/Xunit.SkippableFact#72
@Copilot made their first contribution in Add support for AggregateException in SkippableFact AArnott/Xunit.SkippableFact#80
@JKamsker made their first contribution in Fix wrong failed state for rider AArnott/Xunit.SkippableFact#105

Full Changelog: AArnott/Xunit.SkippableFact@v1.5.23...v1.5.61

Commits viewable in compare view.

Bumps BCrypt.Net-Next from 4.0.3 to 4.2.0 Bumps Npgsql.EntityFrameworkCore.PostgreSQL from 10.0.1 to 10.0.2 Bumps OpenTelemetry.Instrumentation.AspNetCore from 1.11.1 to 1.15.2 Bumps OpenTelemetry.Instrumentation.Http from 1.11.1 to 1.15.1 Bumps OpenTelemetry.Instrumentation.Runtime from 1.11.1 to 1.15.1 Bumps System.IdentityModel.Tokens.Jwt from 8.14.0 to 8.18.0 Bumps WebPush from 1.0.12 to 1.0.13 Bumps xunit.runner.visualstudio from 3.1.4 to 3.1.5 Bumps Xunit.SkippableFact from 1.5.23 to 1.5.61 --- updated-dependencies: - dependency-name: BCrypt.Net-Next dependency-version: 4.2.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget-minor-patch - dependency-name: Npgsql.EntityFrameworkCore.PostgreSQL dependency-version: 10.0.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: OpenTelemetry.Instrumentation.AspNetCore dependency-version: 1.15.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget-minor-patch - dependency-name: OpenTelemetry.Instrumentation.Http dependency-version: 1.15.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget-minor-patch - dependency-name: OpenTelemetry.Instrumentation.Runtime dependency-version: 1.15.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget-minor-patch - dependency-name: System.IdentityModel.Tokens.Jwt dependency-version: 8.18.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: nuget-minor-patch - dependency-name: WebPush dependency-version: 1.0.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: WebPush dependency-version: 1.0.13 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: xunit.runner.visualstudio dependency-version: 3.1.5 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: Xunit.SkippableFact dependency-version: 1.5.61 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: Xunit.SkippableFact dependency-version: 1.5.61 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch - dependency-name: Xunit.SkippableFact dependency-version: 1.5.61 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: nuget-minor-patch ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2026-06-05T12:44:07Z

Superseded by #34.

dependabot Bot added dependabot:dotnet Dependabot NuGet updates for the .NET monorepo dependabot:monorepo Dependabot updates affecting the full monorepo solution labels May 28, 2026

dependabot Bot changed the title ~~Bump the nuget-minor-patch group with 9 updates~~ Bump BCrypt.Net-Next and 8 others Jun 3, 2026

dependabot Bot force-pushed the dependabot/nuget/apps/nexarr-api/NexArr.Api/nuget-minor-patch-014885b221 branch from b66f792 to 985604e Compare June 3, 2026 04:23

dependabot Bot closed this Jun 5, 2026

dependabot Bot deleted the dependabot/nuget/apps/nexarr-api/NexArr.Api/nuget-minor-patch-014885b221 branch June 5, 2026 12:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump BCrypt.Net-Next and 8 others#12

Bump BCrypt.Net-Next and 8 others#12
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/apps/nexarr-api/NexArr.Api/nuget-minor-patch-014885b221

dependabot Bot commented on behalf of github May 28, 2026 •

edited

Loading

Uh oh!

dependabot Bot commented on behalf of github Jun 5, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github May 28, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

4.2.0

4.1.0

What's Changed

New Contributors

10.0.2

What's Changed

1.15.2

1.15.1

1.15.1-beta.2

1.15.1-beta.1

1.15.1-alpha.1

1.15.0

1.15.0-rc.1

1.15.0-beta.2

1.15.0-beta.1

1.15.0-alpha.1

1.14.2

1.14.1

1.14.0

1.14.0-rc.1

1.14.0-beta.2

1.14.0-alpha.1

1.15.1

1.15.1-beta.2

1.15.1-beta.1

1.15.1-alpha.1

1.15.0

1.15.0-rc.1

1.15.0-beta.2

1.15.0-beta.1

1.15.0-alpha.1

1.14.2

1.14.1

1.14.0

1.14.0-rc.1

1.14.0-beta.2

1.14.0-alpha.1

1.15.1

1.15.1-beta.2

1.15.1-beta.1

1.15.1-alpha.1

1.15.0

1.15.0-rc.1

1.15.0-beta.2

1.15.0-beta.1

1.15.0-alpha.1

1.14.2

1.14.1

1.14.0

1.14.0-rc.1

1.14.0-beta.2

1.14.0-alpha.1

8.18.0

New Features

8.17.0

Dependencies

8.16.0

New Features

Fundamentals

8.15.0

New Features

Bug Fixes

Fundamentals

.NET 10 / SDK and tooling updates

3.1.5

1.5.61

What's Changed

New Contributors

Uh oh!

dependabot Bot commented on behalf of github Jun 5, 2026

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

dependabot Bot commented on behalf of github May 28, 2026 •

edited

Loading