Skip to content

Bump WireMock.Net from 1.25.0 to 2.0.0#425

Merged
guibranco merged 2 commits into
mainfrom
dependabot/nuget/Tests/SolutionName.IntegrationTests/WireMock.Net-2.0.0
Mar 20, 2026
Merged

Bump WireMock.Net from 1.25.0 to 2.0.0#425
guibranco merged 2 commits into
mainfrom
dependabot/nuget/Tests/SolutionName.IntegrationTests/WireMock.Net-2.0.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Mar 16, 2026

Copy link
Copy Markdown
Contributor

Updated WireMock.Net from 1.25.0 to 2.0.0.

Release notes

Sourced from WireMock.Net's releases.

2.0.0

What's Changed

Full Changelog: wiremock/WireMock.Net@1.25.0...2.0.0

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---
updated-dependencies:
- dependency-name: WireMock.Net
  dependency-version: 2.0.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot @github

dependabot Bot commented on behalf of github Mar 16, 2026

Copy link
Copy Markdown
Contributor Author

Labels

The following labels could not be found: nuget, packages. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

@dependabot dependabot Bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Mar 16, 2026
@semanticdiff-com

semanticdiff-com Bot commented Mar 16, 2026

Copy link
Copy Markdown

Review changes with  SemanticDiff

Changed Files
File Status
  Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csproj  0% smaller

@pr-code-reviewer

pr-code-reviewer Bot commented Mar 16, 2026

Copy link
Copy Markdown

👋 Hi there!

  1. Check compatibility: Ensure that the updated version of "WireMock.Net" (2.0.0) is compatible with other dependencies.
  2. Test impact: Verify that upgrading "WireMock.Net" does not introduce breaking changes or affect existing functionality negatively.
  3. Update documentation: Update any relevant documentation to reflect the change in the package version for "WireMock.Net."


Automatically generated with the help of gpt-3.5-turbo.
Feedback? Please don't hesitate to drop me an email at webber@takken.io.

@github-actions github-actions Bot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Mar 16, 2026
@socket-security

Copy link
Copy Markdown

Review the following changes in direct dependencies. Learn more about Socket for GitHub.

Diff Package Supply Chain
Security
Vulnerability Quality Maintenance License
Updatedwiremock.net@​1.25.0 ⏵ 2.0.010010090100100

View full report

@socket-security

Copy link
Copy Markdown

Caution

Review the following alerts detected in dependencies.

According to your organization's Security Policy, you must resolve all "Block" alerts before proceeding. Learn more about Socket for GitHub.

Action Severity Alert  (click "▶" to expand/collapse)
Block Medium
Dynamic code execution: nuget anyof

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/anyof@0.5.0.1

ℹ Read more on: This package | This alert | What is dynamic code execution?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Avoid packages that use dynamic code execution like eval(), since this could potentially execute any code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/anyof@0.5.0.1. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Medium
Dynamic code execution: nuget graphql.newtonsoftjson

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/graphql.newtonsoftjson@8.5.0

ℹ Read more on: This package | This alert | What is dynamic code execution?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Avoid packages that use dynamic code execution like eval(), since this could potentially execute any code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/graphql.newtonsoftjson@8.5.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Medium
Dynamic code execution: nuget njsonschema.extensions

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/njsonschema.extensions@0.2.0

ℹ Read more on: This package | This alert | What is dynamic code execution?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Avoid packages that use dynamic code execution like eval(), since this could potentially execute any code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/njsonschema.extensions@0.2.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Medium
Dynamic code execution: nuget randomdatagenerator.net

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/randomdatagenerator.net@1.0.19.1

ℹ Read more on: This package | This alert | What is dynamic code execution?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Avoid packages that use dynamic code execution like eval(), since this could potentially execute any code.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/randomdatagenerator.net@1.0.19.1. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Medium
System shell access: nuget randomdatagenerator.net

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/randomdatagenerator.net@1.0.19.1

ℹ Read more on: This package | This alert | What is shell access?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: Packages should avoid accessing the shell which can reduce portability, and make it easier for malicious shell access to be introduced.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/randomdatagenerator.net@1.0.19.1. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Low
Filesystem access: nuget graphql.newtonsoftjson

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/graphql.newtonsoftjson@8.5.0

ℹ Read more on: This package | This alert | What is filesystem access?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: If a package must read the file system, clarify what it will read and ensure it reads only what it claims to. If appropriate, packages can leave file system access to consumers and operate on data passed to it instead.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/graphql.newtonsoftjson@8.5.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Low
Filesystem access: nuget randomdatagenerator.net

Location: Package overview

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/randomdatagenerator.net@1.0.19.1

ℹ Read more on: This package | This alert | What is filesystem access?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: If a package must read the file system, clarify what it will read and ensure it reads only what it claims to. If appropriate, packages can leave file system access to consumers and operate on data passed to it instead.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/randomdatagenerator.net@1.0.19.1. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

Block Low
License exception: nuget system.text.encodings.web with Classpath-exception-2.0

Exception: Classpath-exception-2.0

Comments:

From: Tests/SolutionName.IntegrationTests/SolutionName.IntegrationTests.csprojnuget/wiremock.net@2.0.0nuget/system.text.encodings.web@8.0.0

ℹ Read more on: This package | This alert | What is a license exception?

Next steps: Take a moment to review the security alert above. Review the linked package source code to understand the potential risk. Ensure the package is not malicious before proceeding. If you're unsure how to proceed, reach out to your security team or ask the Socket team for help at support@socket.dev.

Suggestion: License exceptions should be carefully reviewed.

Mark the package as acceptable risk. To ignore this alert only in this pull request, reply with the comment @SocketSecurity ignore nuget/system.text.encodings.web@8.0.0. You can also ignore all packages with @SocketSecurity ignore-all. To ignore an alert for all future pull requests, use Socket's Dashboard to change the triage state of this alert.

View full report

@guibranco guibranco enabled auto-merge (squash) March 16, 2026 18:17
@gstraccini gstraccini Bot added the ☑️ auto-merge Automatic merging of pull requests (gstraccini-bot) label Mar 16, 2026

@guibranco guibranco left a comment

Copy link
Copy Markdown
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Automatically approved by gstraccini[bot]

@gstraccini gstraccini Bot added the 🤖 bot Automated processes or integrations label Mar 16, 2026
@github-actions

Copy link
Copy Markdown

Infisical secrets check: ✅ No secrets leaked!

💻 Scan logs
2026-03-20T16:41:54Z INF scanning for exposed secrets...
4:41PM INF 501 commits scanned.
2026-03-20T16:41:54Z INF scan completed in 78.9ms
2026-03-20T16:41:54Z INF no leaks found

@sonarqubecloud

Copy link
Copy Markdown

@guibranco guibranco merged commit 7d3ab7b into main Mar 20, 2026
25 of 27 checks passed
@guibranco guibranco deleted the dependabot/nuget/Tests/SolutionName.IntegrationTests/WireMock.Net-2.0.0 branch March 20, 2026 16:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

☑️ auto-merge Automatic merging of pull requests (gstraccini-bot) 🤖 bot Automated processes or integrations dependencies Pull requests that update a dependency file .NET Pull requests that update .net code size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Development

Successfully merging this pull request may close these issues.

1 participant