Skip to content

Bump the nuget group with 19 updates#1499

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/dot-config/nuget-1a813c9f87
Open

Bump the nuget group with 19 updates#1499
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/dot-config/nuget-1a813c9f87

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Jun 3, 2026

Updated Basic.Reference.Assemblies from 1.8.6 to 1.8.8.

Release notes

Sourced from Basic.Reference.Assemblies's releases.

1.8.8

Create release 1.8.8

1.8.7

Create release 1.8.7

Commits viewable in compare view.

Updated dotnet-ef from 10.0.7 to 10.0.8.

Release notes

Sourced from dotnet-ef's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated linq2db.EntityFrameworkCore from 10.3.0 to 10.4.0.

Release notes

Sourced from linq2db.EntityFrameworkCore's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated MessagePack from 3.1.4 to 3.1.6.

Release notes

Sourced from MessagePack's releases.

3.1.6

What's Changed

Full Changelog: MessagePack-CSharp/MessagePack-CSharp@v3.1.5...v3.1.6

3.1.5

What's Changed

New Contributors

Full Changelog: MessagePack-CSharp/MessagePack-CSharp@v3.1.4...v3.1.5

Commits viewable in compare view.

Updated MessagePack.AspNetCoreMvcFormatter from 3.1.4 to 3.1.6.

Release notes

Sourced from MessagePack.AspNetCoreMvcFormatter's releases.

3.1.6

What's Changed

Full Changelog: MessagePack-CSharp/MessagePack-CSharp@v3.1.5...v3.1.6

3.1.5

What's Changed

New Contributors

Full Changelog: MessagePack-CSharp/MessagePack-CSharp@v3.1.4...v3.1.5

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Authentication.JwtBearer from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.JwtBearer's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.AspNetCore.OpenApi from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.AspNetCore.OpenApi's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.AspNetCore.TestHost from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.AspNetCore.TestHost's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.EntityFrameworkCore.Tools from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.EntityFrameworkCore.Tools's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Caching.StackExchangeRedis from 10.0.7 to 10.0.8.

Release notes

Sourced from Microsoft.Extensions.Caching.StackExchangeRedis's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.IdentityModel.JsonWebTokens from 8.18.0 to 8.19.0.

Release notes

Sourced from Microsoft.IdentityModel.JsonWebTokens's releases.

8.19.0

New Features

  • Add ML-DSA (FIPS 204) post-quantum signature support. See PR #​3479.
  • Cache custom crypto providers in CryptoProviderFactory. See PR #​3489.

Bug Fixes

  • Disable automatic redirects on default HttpClient for JKU retrieval. See PR #​3494.
  • Adjust rented buffer handling in claim set parsing. See PR #​3493.
  • Tidy null handling in SAML conditions validation. See PR #​3491.
  • Improve validation of jku claim. See PR #​3481.
  • Limit telemetry algorithm dimension cardinality. See PR #​3490.
  • Add defensive copy of collections in ValidationParameters. See PR #​3492.
  • Update TokenValidationParameter copy constructor to make a deep copy. See PR #​3488.
  • Update to fail-closed when replay protection isn't configured and other DPoP hardening. See PR #​3505.
  • Apply RFC 3986 section 6.2.2 normalization to DPoP htu comparison. See PR #​3509.

Commits viewable in compare view.

Updated Microsoft.IdentityModel.Tokens from 8.18.0 to 8.19.0.

Release notes

Sourced from Microsoft.IdentityModel.Tokens's releases.

8.19.0

New Features

  • Add ML-DSA (FIPS 204) post-quantum signature support. See PR #​3479.
  • Cache custom crypto providers in CryptoProviderFactory. See PR #​3489.

Bug Fixes

  • Disable automatic redirects on default HttpClient for JKU retrieval. See PR #​3494.
  • Adjust rented buffer handling in claim set parsing. See PR #​3493.
  • Tidy null handling in SAML conditions validation. See PR #​3491.
  • Improve validation of jku claim. See PR #​3481.
  • Limit telemetry algorithm dimension cardinality. See PR #​3490.
  • Add defensive copy of collections in ValidationParameters. See PR #​3492.
  • Update TokenValidationParameter copy constructor to make a deep copy. See PR #​3488.
  • Update to fail-closed when replay protection isn't configured and other DPoP hardening. See PR #​3505.
  • Apply RFC 3986 section 6.2.2 normalization to DPoP htu comparison. See PR #​3509.

Commits viewable in compare view.

Updated Npgsql.EntityFrameworkCore.PostgreSQL from 10.0.1 to 10.0.2.

Release notes

Sourced from Npgsql.EntityFrameworkCore.PostgreSQL's releases.

10.0.2

Milestone issue

What's Changed

Full Changelog: npgsql/efcore.pg@v10.0.1...v10.0.2

Commits viewable in compare view.

Updated OpenTelemetry.Instrumentation.StackExchangeRedis from 1.15.1-beta.1 to 1.15.1-beta.2.

Release notes

Sourced from OpenTelemetry.Instrumentation.StackExchangeRedis's releases.

1.15.1-beta.2

Commits viewable in compare view.

Updated PolySharp from 1.15.0 to 1.16.0.

Release notes

Sourced from PolySharp's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Redis.OM from 1.1.0 to 1.2.0.

Release notes

Sourced from Redis.OM's releases.

1.2.0

Redis OM .NET 1.2.0

✨ New Features

  • Numeric array querying — query against arrays of numeric values (#​546)
  • Search scores propagatedWITHSCORES is now parsed correctly and scores are exposed via a new Scores dictionary on SearchResponse/SearchResponse<T> (#​561)

🐛 Bug Fixes

  • Fix .NET 10 / C# 14 array Contains query translation, without a framework bump (#​567)
  • Fix IQueryable select projection path (#​562)
  • Fix aggregation set boolean expression parsing (#​564)
  • Fix aggregation null-query dialect handling (#​556)
  • Fix nullable enum Contains query translation (#​559)
  • Fix IRedisHydrateable hash materialization (#​555)
  • Preserve TTL on stateless UpdateAsync instead of dropping it (#​558)
  • Preserve RedisConnectionException type and command context instead of wrapping it in a generic Exception (#​560)
  • Fail fast (client-side InvalidOperationException) on null/missing queries against IndexEmptyAndMissing = false fields (#​563)

Full Changelog: redis/redis-om-dotnet@v1.0.1...v1.2.0

Commits viewable in compare view.

Updated Serilog.Sinks.Seq from 9.0.0 to 9.1.0.

Release notes

Sourced from Serilog.Sinks.Seq's releases.

9.1.0

What's Changed

Full Changelog: datalust/serilog-sinks-seq@v9.0.0...v9.1.0

Commits viewable in compare view.

Updated System.Text.Json from 10.0.7 to 10.0.8.

Release notes

Sourced from System.Text.Json's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Verify.XunitV3 from 31.16.2 to 31.19.0.

Release notes

Sourced from Verify.XunitV3's releases.

31.19.0

  • #​1743 UseSsimForPng override on VerifySettings and SettingsTask

31.18.0

  • #​1739 add BypassComparersForSubsequentOnDifference

31.17.0

31.16.3

No issues in this milestone yet.

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the nuget group with 19 updates
2779898 
Bumps Basic.Reference.Assemblies from 1.8.6 to 1.8.8
Bumps dotnet-ef from 10.0.7 to 10.0.8
Bumps linq2db.EntityFrameworkCore from 10.3.0 to 10.4.0
Bumps MessagePack from 3.1.4 to 3.1.6
Bumps MessagePack.AspNetCoreMvcFormatter from 3.1.4 to 3.1.6
Bumps Microsoft.AspNetCore.Authentication.JwtBearer from 10.0.7 to 10.0.8
Bumps Microsoft.AspNetCore.OpenApi from 10.0.7 to 10.0.8
Bumps Microsoft.AspNetCore.TestHost from 10.0.7 to 10.0.8
Bumps Microsoft.EntityFrameworkCore.Tools from 10.0.7 to 10.0.8
Bumps Microsoft.Extensions.Caching.StackExchangeRedis from 10.0.7 to 10.0.8
Bumps Microsoft.IdentityModel.JsonWebTokens from 8.18.0 to 8.19.0
Bumps Microsoft.IdentityModel.Tokens from 8.18.0 to 8.19.0
Bumps Npgsql.EntityFrameworkCore.PostgreSQL from 10.0.1 to 10.0.2
Bumps OpenTelemetry.Instrumentation.StackExchangeRedis from 1.15.1-beta.1 to 1.15.1-beta.2
Bumps PolySharp from 1.15.0 to 1.16.0
Bumps Redis.OM from 1.1.0 to 1.2.0
Bumps Serilog.Sinks.Seq from 9.0.0 to 9.1.0
Bumps System.Text.Json from 10.0.7 to 10.0.8
Bumps Verify.XunitV3 from 31.16.2 to 31.19.0

---
updated-dependencies:
- dependency-name: Basic.Reference.Assemblies
  dependency-version: 1.8.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: dotnet-ef
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: linq2db.EntityFrameworkCore
  dependency-version: 10.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
- dependency-name: MessagePack
  dependency-version: 3.1.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: MessagePack.AspNetCoreMvcFormatter
  dependency-version: 3.1.6
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Microsoft.AspNetCore.OpenApi
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Microsoft.AspNetCore.TestHost
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Microsoft.EntityFrameworkCore.Tools
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Microsoft.Extensions.Caching.StackExchangeRedis
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Microsoft.IdentityModel.JsonWebTokens
  dependency-version: 8.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
- dependency-name: Microsoft.IdentityModel.Tokens
  dependency-version: 8.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
- dependency-name: Npgsql.EntityFrameworkCore.PostgreSQL
  dependency-version: 10.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: OpenTelemetry.Instrumentation.StackExchangeRedis
  dependency-version: 1.15.1-beta.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: PolySharp
  dependency-version: 1.16.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
- dependency-name: Redis.OM
  dependency-version: 1.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
- dependency-name: Serilog.Sinks.Seq
  dependency-version: 9.1.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
- dependency-name: System.Text.Json
  dependency-version: 10.0.8
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget
- dependency-name: Verify.XunitV3
  dependency-version: 31.19.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Jun 3, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants