build(deps): bump Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI in /src/GraphWebhooks #399

dependabot · 2025-01-27T02:47:47Z

Bumps Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI. These dependencies needed to be updated together.
Updates Azure.Identity from 1.13.2 to 1.11.4

Commits

2856f9a changelog update
7267469 Update azure-sdk-build-tools Repository Resource Refs in Yaml files (#43311)
2db9a0f AzureArcManagedIdentitySource fix
06dd672 Hotfix for DAC probe request
ae13ec2 Fix ConfidentialClient's AcquireTokenSilent and AcquireTokenOnBehalfOf claims...
1835c8f Sync .github/workflows directory with azure-sdk-tools for PR 8131 (#43535)
40ff95a prep release (#43534)
70f5c48 [AzureMonitorDistro] Add LiveMetricsActivityProcessor only when live metrics ...
a6c3e59 Respect SupportsOrdering property (#43531)
82cc7cf WCF Client/CoreWCF extension packages to use Azure Queue Storage as transport...
Additional commits viewable in compare view

Updates Azure.Security.KeyVault.Certificates from 4.7.0 to 4.6.0

Commits

2ba5db3 Throw RequestFailedException for failed backup/restore (#41919)
162774f Fix spelling mistakes (#41998)
e4682df ClientModel: Make ClientRetryPolicy.Default a property instead of a field (#4...
99551c7 [Analyzers] Adding additional approved namespaces (#41967)
dd211a7 Beta 2 updates (#41913)
4ea0b68 Move emitter-package.json scripts to eng/common (#41989)
cf3d2b8 [Extensions] Add AOT compatibility attributes to Microsoft.Extensions.Azure (...
89d810e [Event Hubs] Post-release fixes (#41966)
cd042cc Update the dependencies to resolve vulnerabilities. (#41798)
7514ee3 Prepare for release (#41970)
Additional commits viewable in compare view

Updates Azure.Security.KeyVault.Secrets from 4.7.0 to 4.6.0

Commits

2ba5db3 Throw RequestFailedException for failed backup/restore (#41919)
162774f Fix spelling mistakes (#41998)
e4682df ClientModel: Make ClientRetryPolicy.Default a property instead of a field (#4...
99551c7 [Analyzers] Adding additional approved namespaces (#41967)
dd211a7 Beta 2 updates (#41913)
4ea0b68 Move emitter-package.json scripts to eng/common (#41989)
cf3d2b8 [Extensions] Add AOT compatibility attributes to Microsoft.Extensions.Azure (...
89d810e [Event Hubs] Post-release fixes (#41966)
cd042cc Update the dependencies to resolve vulnerabilities. (#41798)
7514ee3 Prepare for release (#41970)
Additional commits viewable in compare view

Updates Microsoft.Identity.Web from 3.6.2 to 3.6.2

Changelog

Sourced from Microsoft.Identity.Web's changelog.

3.6.2

Updated to Microsoft.Identity.Abstractions 8.0.0

Fundamentals

Clean-up the tests that were using properties removed in Abstractions 8.0.0. See issue #3212 for details.

3.6.1

Updated to Microsoft.Identity.Abstractions 7.2.1

3.6.0

Updated to Microsoft.IdentityModel.* 8.3.1

Updated to MSAL.NET 4.67.2

Bug fixes

Checks that B2C tokens don't contain the claims used by Identity Web to represent the home tenant and object ID (obtained from the UserInfo endpoint). See AzureAD/microsoft-identity-web#3131

Remove explicit locking in OpenIdConnectCachingSecurityTokenProvider. See Issue #3078

Fundamentals

Fix Null Reference Exception in OwinTokenAcquirerFactory + other OWIN cleanup. See AzureAD/microsoft-identity-web#3183

Re-add code coverage comments & scope to src files. See AzureAD/microsoft-identity-web#3177

3.5.0

Updated to Microsoft.IdentityModel.* 8.3.0

Bug fixes

Ensure Singleton registration for TokenAcquisition Services when TokenAcquirerFactory is null. See AzureAD/microsoft-identity-web#3155

Dont modify the merged options when building the confidential client. See AzureAD/microsoft-identity-web#3137

Fundamentals

Install all .NET versions in pipeline, including .NET 9. See AzureAD/microsoft-identity-web#3152

Upgrade to C# 13. See AzureAD/microsoft-identity-web#3138

Specify sdk version in global.json. See AzureAD/microsoft-identity-web#3156

Disable Coverage PR comments. See in AzureAD/microsoft-identity-web#3159

3.4.0

Updated to Microsoft.IdentityModel.* 8.2.1

Updated to Microsoft.Identity.Abstractions 7.2.0

New features

Add ROPC flow support for confidential client applications. See 3091, 3129, 3139.

Allow multi-tenant applications to specify the AppHomeTenantId to be used for client credentials. See 3121, 3132.

Update to use .NET 9 GA. See 3127.

3.3.1

... (truncated)

Commits

See full diff in compare view

Updates Microsoft.Identity.Web.UI from 3.4.0 to 3.6.2

Release notes

Sourced from Microsoft.Identity.Web.UI's releases.

3.6.2

Updated to Microsoft.Identity.Abstractions 8.0.0

Fundamentals

Clean-up the tests that were using properties removed in Abstractions 8.0.0. See issue #3212 for details.

What's Changed

Bump the notsecurity group across 1 directory with 3 updates by @dependabot in AzureAD/microsoft-identity-web#3211

Suppress TFM Build Warnings by @kllysng in AzureAD/microsoft-identity-web#3210

Fixing 3212 and cleaning-up technical debt by @jmprieur in AzureAD/microsoft-identity-web#3213

Full Changelog: AzureAD/microsoft-identity-web@3.6.1...3.6.2

3.6.1

Updated to Microsoft.Identity.Abstractions 7.2.1

3.6.0

Updated to Microsoft.IdentityModel.* 8.3.1

Updated to MSAL.NET 4.67.2

Bug fixes

Checks that B2C tokens don't contain the claims used by Identity Web to represent the home tenant and object ID (obtained from the UserInfo endpoint). See AzureAD/microsoft-identity-web#3131

Remove explicit locking in OpenIdConnectCachingSecurityTokenProvider. See Issue #3078

Fundamentals

Fix Null Reference Exception in OwinTokenAcquirerFactory + other OWIN cleanup. See AzureAD/microsoft-identity-web#3183

Re-add code coverage comments & scope to src files. See AzureAD/microsoft-identity-web#3177

What's Changed

Update changelog.md by @jmprieur in AzureAD/microsoft-identity-web#3161

Update global.json by @keegan-caruso in AzureAD/microsoft-identity-web#3163

Use ExtraQP to inject telemetry SDK ID by @bgavrilMS in AzureAD/microsoft-identity-web#2973

Fix 3167 (package downgrade when referencing IdentityModel.Tokens from dev) by @jmprieur in AzureAD/microsoft-identity-web#3168

Add Warning Quality Check Build Task 🔨 by @kllysng in AzureAD/microsoft-identity-web#3169

Treat warnings as errors by @keegan-caruso in AzureAD/microsoft-identity-web#3166

Revert: Warning Quality Check Build Task by @alexholub113 in AzureAD/microsoft-identity-web#3172

fix warnings in idweb and readd warnings as errors by @jennyf19 in AzureAD/microsoft-identity-web#3173

Add checks to protect the internal claims used by MIW. Ref: issue #2968 by @DOMZE in AzureAD/microsoft-identity-web#3131

use only src files and re-add comments by @jennyf19 in AzureAD/microsoft-identity-web#3176

Update dotnet actions by @sebastienros in AzureAD/microsoft-identity-web#3175

Fixes 3181 by @jmprieur in AzureAD/microsoft-identity-web#3183

Add retry logic to stabilize flaky UI tests by @kllysng in AzureAD/microsoft-identity-web#3180

Add null handling for process output/error data in UiTestHelpers by @kllysng in AzureAD/microsoft-identity-web#3184

package updates from dependabot by @jennyf19 in AzureAD/microsoft-identity-web#3185

Fix E2E tests persistent flakiness + build hanging by @kllysng in AzureAD/microsoft-identity-web#3188

... (truncated)

Changelog

Sourced from Microsoft.Identity.Web.UI's changelog.

3.6.2

Updated to Microsoft.Identity.Abstractions 8.0.0

Fundamentals

Clean-up the tests that were using properties removed in Abstractions 8.0.0. See issue #3212 for details.

3.6.1

Updated to Microsoft.Identity.Abstractions 7.2.1

3.6.0

Updated to Microsoft.IdentityModel.* 8.3.1

Updated to MSAL.NET 4.67.2

Bug fixes

Checks that B2C tokens don't contain the claims used by Identity Web to represent the home tenant and object ID (obtained from the UserInfo endpoint). See AzureAD/microsoft-identity-web#3131

Remove explicit locking in OpenIdConnectCachingSecurityTokenProvider. See Issue #3078

Fundamentals

Fix Null Reference Exception in OwinTokenAcquirerFactory + other OWIN cleanup. See AzureAD/microsoft-identity-web#3183

Re-add code coverage comments & scope to src files. See AzureAD/microsoft-identity-web#3177

3.5.0

Updated to Microsoft.IdentityModel.* 8.3.0

Bug fixes

Ensure Singleton registration for TokenAcquisition Services when TokenAcquirerFactory is null. See AzureAD/microsoft-identity-web#3155

Dont modify the merged options when building the confidential client. See AzureAD/microsoft-identity-web#3137

Fundamentals

Install all .NET versions in pipeline, including .NET 9. See AzureAD/microsoft-identity-web#3152

Upgrade to C# 13. See AzureAD/microsoft-identity-web#3138

Specify sdk version in global.json. See AzureAD/microsoft-identity-web#3156

Disable Coverage PR comments. See in AzureAD/microsoft-identity-web#3159

Commits

990a2ba Fixing 3212 and cleaning-up technical debt (#3213)
95b1f8d Suppress TFM Build Warnings (#3210)
8c68af6 Bump the notsecurity group across 1 directory with 3 updates (#3211)
98a0ef9 update abstractions to 7.2.1 (#3208)
f52f773 update dependabot (#3196)
25d1c7e Bump the notsecurity group with 3 updates (#3206)
076048b update Identitymodel (#3205)
91db389 3.6.0 changelog (#3203)
c116563 Remove explicit locking in OpenIdConnectCachingSecurityTokenProvider (#3202)
5a5f59b Update Directory.Build.props (#3200)
Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

…s, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI Bumps [Azure.Identity](https://github.com/Azure/azure-sdk-for-net), [Azure.Security.KeyVault.Certificates](https://github.com/Azure/azure-sdk-for-net), [Azure.Security.KeyVault.Secrets](https://github.com/Azure/azure-sdk-for-net), [Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web) and [Microsoft.Identity.Web.UI](https://github.com/AzureAD/microsoft-identity-web). These dependencies needed to be updated together. Updates `Azure.Identity` from 1.13.2 to 1.11.4 - [Release notes](https://github.com/Azure/azure-sdk-for-net/releases) - [Commits](Azure/azure-sdk-for-net@Azure.Identity_1.13.2...Azure.Identity_1.11.4) Updates `Azure.Security.KeyVault.Certificates` from 4.7.0 to 4.6.0 - [Release notes](https://github.com/Azure/azure-sdk-for-net/releases) - [Commits](Azure/azure-sdk-for-net@Azure.Security.KeyVault.Certificates_4.7.0...Azure.Security.KeyVault.Certificates_4.6.0) Updates `Azure.Security.KeyVault.Secrets` from 4.7.0 to 4.6.0 - [Release notes](https://github.com/Azure/azure-sdk-for-net/releases) - [Commits](Azure/azure-sdk-for-net@Azure.Security.KeyVault.Secrets_4.7.0...Azure.Security.KeyVault.Secrets_4.6.0) Updates `Microsoft.Identity.Web` from 3.6.2 to 3.6.2 - [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases) - [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/master/changelog.md) - [Commits](AzureAD/microsoft-identity-web@3.6.2...3.6.2) Updates `Microsoft.Identity.Web.UI` from 3.4.0 to 3.6.2 - [Release notes](https://github.com/AzureAD/microsoft-identity-web/releases) - [Changelog](https://github.com/AzureAD/microsoft-identity-web/blob/master/changelog.md) - [Commits](AzureAD/microsoft-identity-web@3.4.0...3.6.2) --- updated-dependencies: - dependency-name: Azure.Identity dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: Azure.Security.KeyVault.Certificates dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: Azure.Security.KeyVault.Secrets dependency-type: direct:production update-type: version-update:semver-minor - dependency-name: Microsoft.Identity.Web dependency-type: direct:production update-type: version-update:semver-patch - dependency-name: Microsoft.Identity.Web.UI dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot requested a review from a team as a code owner January 27, 2025 02:47

dependabot bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Jan 27, 2025

github-actions bot enabled auto-merge January 27, 2025 02:48

andrueastman approved these changes Jan 27, 2025

View reviewed changes

github-actions bot merged commit e875fac into main Jan 27, 2025
6 checks passed

github-actions bot deleted the dependabot/nuget/src/GraphWebhooks/multi-9f3a914230 branch January 27, 2025 06:30

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

build(deps): bump Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI in /src/GraphWebhooks #399

build(deps): bump Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI in /src/GraphWebhooks #399

Uh oh!

dependabot bot commented on behalf of github Jan 27, 2025

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants

build(deps): bump Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI in /src/GraphWebhooks #399

build(deps): bump Azure.Identity, Azure.Security.KeyVault.Certificates, Azure.Security.KeyVault.Secrets, Microsoft.Identity.Web and Microsoft.Identity.Web.UI in /src/GraphWebhooks #399

Uh oh!

Conversation

dependabot bot commented on behalf of github Jan 27, 2025

3.6.2

Fundamentals

3.6.1

3.6.0

Bug fixes

Fundamentals

3.5.0

Bug fixes

Fundamentals

3.4.0

New features

3.6.2

Fundamentals

What's Changed

3.6.1

3.6.0

Bug fixes

Fundamentals

What's Changed

3.6.2

Fundamentals

3.6.1

3.6.0

Bug fixes

Fundamentals

3.5.0

Bug fixes

Fundamentals

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

2 participants