Bump Microsoft.Identity.Web from 1.14.1 to 1.26.0 by dependabot[bot] · Pull Request #4 · MartinPankraz/AzureSAPODataReader

dependabot · 2023-02-17T07:41:57Z

Bumps Microsoft.Identity.Web from 1.14.1 to 1.26.0.

Release notes

Sourced from Microsoft.Identity.Web's releases.

1.26.0

Fix for #2035

1.25.10

Merge the PR for #1957.

Update to Wilson 6.25.1

1.25.9

Use ConcurrentDictionary for MergedOptions to resolve #1957

1.25.8

Bug Fix:

Fix from @rvplauborg to DownstreamWebApiOptions.Clone, which was missing two properties. #1970

1.25.7

Bug Fix:

Fixes a race condition only present in .NET 7 - #1957

1.25.6

Bug Fix:

Fixes a race condition only present in .NET 7 - #1957

1.25.5

Update to latest IdentityModel 6.25.0

1.25.4

Fix Component Governance alerts due to dependent packages. CVE-2022-1941 in Google.Protobuf, CVE-2022-34716 for netcoreapp3.1, CVE-2021-24112 in System.Drawing.Common.

Bug Fix:

#749

1.25.3

Update to latest IdentityModel 6.23.1, which has 20% perf improvements.

1.25.2

Fix Component Governance issues due to dependent packages. CVE-2022-34716 - in DataProtection 5.0.8

1.25.1

New Features:

Microsoft.Identity.Web now surfaces the Microsoft.IdentityModel. logs via the IIdentityLogger*. Developers will see an increase in logging, with insight into the request validation logs, especially for web APIs. See issue #1730 for details.

... (truncated)

Changelog

Sourced from Microsoft.Identity.Web's changelog.

1.26.0

Fix for #2035

1.25.10

Merge the PR for #1957.

Update to Wilson 6.25.1

1.25.9

Use ConcurrentDictionary for MergedOptions to resolve #1957

1.25.8

Bug Fix:

Fix from @rvplauborg to DownstreamWebApiOptions.Clone, which was missing two properties. #1970

1.25.7

Bug Fix:

Fixes a race condition only present in .NET 7 - #1957

1.25.6

Bug Fix:

Fixes a race condition only present in .NET 7 - #1957

1.25.5

Update to latest IdentityModel 6.25.0

1.25.4

Fix Component Governance alerts due to dependent packages. CVE-2022-1941 in Google.Protobuf, CVE-2022-34716 for netcoreapp3.1, CVE-2021-24112 in System.Drawing.Common.

Bug Fix:

#749

1.25.3

Update to latest IdentityModel 6.23.1, which has 20% perf improvements.

1.25.2

Fix Component Governance issues due to dependent packages. CVE-2022-34716 - in DataProtection 5.0.8

1.25.1

New Features:

... (truncated)

Commits

776f196 Update changelog.md (#2068)
3599bcb use domain hint for tenant Id, per request from MyApps during redemtion of co...
f740377 Fix CVEs (#1998)
c0d8346 Update changelog.md (#1987)
eb4c496 Update to wilson 6.25.1 (#1985)
37b0d33 Use concurrentDictionary for merged options due to thread issue expos… (#1979)
a6e615b Update changelog.md (#1981)
4195c45 Update changelog.md (#1972)
f586de3 Ensure DownstreamWebApiOptions clone includes all properties. (#1971)
7feb93b Update changelog.md (#1969)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

Bumps [Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web) from 1.14.1 to 1.26.0. - [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases) - [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/1.26.0/changelog.md) - [Commits](AzureAD/microsoft-identity-web@1.14.1...1.26.0) --- updated-dependencies: - dependency-name: Microsoft.Identity.Web dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2023-03-06T10:12:19Z

Superseded by #8.

dependabot bot added the dependencies Pull requests that update a dependency file label Feb 17, 2023

dependabot bot closed this Mar 6, 2023

dependabot bot deleted the dependabot/nuget/Microsoft.Identity.Web-1.26.0 branch March 6, 2023 10:12

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump Microsoft.Identity.Web from 1.14.1 to 1.26.0#4

Bump Microsoft.Identity.Web from 1.14.1 to 1.26.0#4
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/nuget/Microsoft.Identity.Web-1.26.0

dependabot bot commented on behalf of github Feb 17, 2023

Uh oh!

dependabot bot commented on behalf of github Mar 6, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot bot commented on behalf of github Feb 17, 2023

1.26.0

1.25.10

1.25.9

1.25.8

Bug Fix:

1.25.7

Bug Fix:

1.25.6

Bug Fix:

1.25.5

1.25.4

Bug Fix:

1.25.3

1.25.2

1.25.1

New Features:

1.26.0

1.25.10

1.25.9

1.25.8

Bug Fix:

1.25.7

Bug Fix:

1.25.6

Bug Fix:

1.25.5

1.25.4

Bug Fix:

1.25.3

1.25.2

1.25.1

New Features:

Uh oh!

dependabot bot commented on behalf of github Mar 6, 2023

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants