Skip to content

Bump the server group with 9 updates#357

Open
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/server/server-f9425bc6db
Open

Bump the server group with 9 updates#357
dependabot[bot] wants to merge 1 commit intomainfrom
dependabot/nuget/server/server-f9425bc6db

Conversation

@dependabot
Copy link
Copy Markdown
Contributor

@dependabot dependabot Bot commented on behalf of github Apr 27, 2026

Updated Microsoft.AspNetCore.Authentication.JwtBearer from 10.0.5 to 10.0.7.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.JwtBearer's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Data.SqlClient from 7.0.0 to 7.0.1.

Release notes

Sourced from Microsoft.Data.SqlClient's releases.

7.0.1

This update brings the following changes since the 7.0.0 release:

Fixed

  • Fixed SqlBulkCopy failing on SQL Server 2016 with Invalid column name 'graph_type' error. The column metadata query now uses dynamic SQL so that references to the graph_type column (introduced in SQL Server 2017) are not compiled on older versions that lack the column. (#​3714, #​4092, #​4147)

  • Fixed SqlBulkCopy failing on Azure Synapse Analytics dedicated SQL pools. The column-list query previously used a variable-assignment pattern that Synapse does not support; it now uses STRING_AGG when targeting Synapse (engine edition 6) and falls back to the variable-assignment approach for SQL Server 2016 compatibility. (#​4149, #​4176, #​4182)

  • Fixed SqlDataReader.GetFieldType() and GetProviderSpecificFieldType() returning typeof(byte[]) instead of typeof(SqlVector<float>) for vector float32 columns. The methods now follow the same type-determination logic as GetValue(). (#​4104, #​4105, #​4152)

  • Added missing System.Data.Common (v4.3.0) NuGet package dependency for .NET Framework consumers. The inbox System.Data.Common assembly on .NET Framework predates APIs such as IDbColumnSchemaGenerator; without the explicit NuGet dependency, consumers encountered CS0012 compilation errors when using these types through Microsoft.Data.SqlClient. (#​4063, #​4074)

Changed

  • Enabled the User Agent TDS feature extension unconditionally. The Switch.Microsoft.Data.SqlClient.EnableUserAgent AppContext switch has been removed; the driver now always sends User Agent information during login. (#​4124, #​4154)

  • Added type forwards from the core Microsoft.Data.SqlClient assembly to public types that were moved to the Microsoft.Data.SqlClient.Extensions.Abstractions package: SqlAuthenticationMethod, SqlAuthenticationParameters, SqlAuthenticationProvider, SqlAuthenticationProviderException, and SqlAuthenticationToken. This ensures binary compatibility for assemblies compiled against earlier versions of Microsoft.Data.SqlClient where these types lived in the core assembly. (#​4067, #​4117)

  • Fixed API documentation include paths and duplicate doc snippets. (#​4084, #​4086, #​4107, #​4161)

Contributors

We thank the following public contributors. Their efforts toward this project are very much appreciated.

Target Platform Support

  • .NET Framework 4.6.2+ (Windows x86, Windows x64, Windows ARM64)
  • .NET 8.0+ (Windows x86, Windows x64, Windows ARM, Windows ARM64, Linux, macOS)

Dependencies

.NET 9.0

  • Microsoft.Bcl.Cryptography 9.0.13
  • Microsoft.Data.SqlClient.Extensions.Abstractions 1.0.0
  • Microsoft.Data.SqlClient.Internal.Logging 1.0.0
  • Microsoft.Data.SqlClient.SNI.runtime 6.0.2
  • Microsoft.Extensions.Caching.Memory 9.0.13
  • Microsoft.IdentityModel.JsonWebTokens 8.16.0
  • Microsoft.IdentityModel.Protocols.OpenIdConnect 8.16.0
  • Microsoft.SqlServer.Server 1.0.0
  • System.Configuration.ConfigurationManager 9.0.13
  • System.Security.Cryptography.Pkcs 9.0.13

.NET 8.0

  • Microsoft.Bcl.Cryptography 8.0.0
  • Microsoft.Data.SqlClient.Extensions.Abstractions 1.0.0
    ... (truncated)

Commits viewable in compare view.

Updated Microsoft.Data.Sqlite from 10.0.5 to 10.0.7.

Release notes

Sourced from Microsoft.Data.Sqlite's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Hosting.WindowsServices from 10.0.5 to 10.0.7.

Release notes

Sourced from Microsoft.Extensions.Hosting.WindowsServices's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated NSwag.AspNetCore from 14.7.0 to 14.7.1.

Release notes

Sourced from NSwag.AspNetCore's releases.

14.7.1

[!IMPORTANT]
Upgrade directly from v14.6.3 to v14.7.1 — skip v14.7.0.

v14.7.0 bundled NJsonSchema v11.6.0, which contained a regression that silently dropped nullability on required T? / [JsonRequired] T? DTO properties. The resulting OpenAPI/JSON schema marked those properties as non-nullable, so generated TypeScript and C# clients lost null-safety for fields the server can legitimately return as null (#​5359).

Corrections to v14.7.0

v14.7.1 updates to NJsonSchema v11.6.1, which corrects the handling of the C# required keyword and [JsonRequired]:

  • These are now treated as presence markers (the property must be present in the JSON) rather than value constraints.
  • Nullability from the declared type (string?, T?) is preserved.
  • No spurious MinLength=1 on non-nullable strings.
  • DataAnnotations [Required] semantics remain unchanged (still suppresses nullability and adds MinLength=1 to strings by default, matching its runtime behavior).

Observable client changes vs v14.7.0

For public required string[]? OptionList { get; init; } (#​5359):

TypeScript client C# client
v14.7.0 (broken) optionList: string[] public string[] OptionList
v14.7.1 optionList: string[] | null public string[]? OptionList

For full details and truth tables across all required / [Required] / [JsonRequired] / [JsonProperty(Required=*)] combinations, see the NJsonSchema v11.6.1 release notes and NJsonSchema #​1919.

What's Changed

Full Changelog: RicoSuter/NSwag@v14.7.0...v14.7.1

Commits viewable in compare view.

Updated System.Data.OleDb from 10.0.5 to 10.0.7.

Release notes

Sourced from System.Data.OleDb's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated TUnit from 1.33.0 to 1.40.5.

Release notes

Sourced from TUnit's releases.

1.40.5

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.40.0...v1.40.5

1.40.0

What's Changed

Other Changes

Dependencies

New Contributors

Full Changelog: thomhurst/TUnit@v1.39.0...v1.40.0

1.39.0

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.37.36...v1.39.0

1.37.36

What's Changed

Other Changes

Full Changelog: thomhurst/TUnit@v1.37.35...v1.37.36

1.37.35

What's Changed

Other Changes

Dependencies

New Contributors

Full Changelog: thomhurst/TUnit@v1.37.24...v1.37.35

1.37.24

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.37.10...v1.37.24

1.37.10

What's Changed

Other Changes

Dependencies

New Contributors

Full Changelog: thomhurst/TUnit@v1.37.0...v1.37.10

1.37.0

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.36.0...v1.37.0

1.36.0

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.35.2...v1.36.0

1.35.2

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.35.0...v1.35.2

1.35.0

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.34.5...v1.35.0

1.34.5

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.34.0...v1.34.5

1.34.0

What's Changed

Other Changes

Dependencies

Full Changelog: thomhurst/TUnit@v1.33.0...v1.34.0

Commits viewable in compare view.

Updated Verify.TUnit from 31.15.0 to 31.16.2.

Release notes

Sourced from Verify.TUnit's releases.

31.16.2

  • #​1714 Unexpected empty.nupkg in output directory
  • #​1721 XUnit V3: Adds attachment with colon in filename - GitHub artifacts upload fails
  • #​1723 Strip solution dir prefix from XunitV3 attachment names

31.16.1

  • #​1718 Handle eof and missing ihdr in png decoder

31.16.0

  • #​1704 Add ScrubNumericIds
  • #​1707 Minor micro-optimizations for Verify project.
  • #​1708 Add Target comparer and avoid string allocations.
  • #​1709 ApplyForPropertyValue returns string instead of CharSpan
  • #​1710 In-place sort instead of LINQ OrderByDescending
  • #​1711 Remove unnecessary ToString() in VerifyJsonWriter
  • #​1716 add Png ssim comparer
  • #​1717 Throw on null assembly in TryGetType for bad plugin assembly

Commits viewable in compare view.

Updated WireMock.Net from 2.2.0 to 2.4.0.

Release notes

Sourced from WireMock.Net's releases.

2.4.0

What's Changed

Full Changelog: wiremock/WireMock.Net@2.3.0...2.4.0

2.3.0

What's Changed

New Contributors

Full Changelog: wiremock/WireMock.Net@2.2.0...2.3.0

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the server group with 9 updates
ff0d130 
Bumps Microsoft.AspNetCore.Authentication.JwtBearer from 10.0.5 to 10.0.7
Bumps Microsoft.Data.SqlClient from 7.0.0 to 7.0.1
Bumps Microsoft.Data.Sqlite from 10.0.5 to 10.0.7
Bumps Microsoft.Extensions.Hosting.WindowsServices from 10.0.5 to 10.0.7
Bumps NSwag.AspNetCore from 14.7.0 to 14.7.1
Bumps System.Data.OleDb from 10.0.5 to 10.0.7
Bumps TUnit from 1.33.0 to 1.40.5
Bumps Verify.TUnit from 31.15.0 to 31.16.2
Bumps WireMock.Net from 2.2.0 to 2.4.0

---
updated-dependencies:
- dependency-name: Microsoft.AspNetCore.Authentication.JwtBearer
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server
- dependency-name: Microsoft.Data.SqlClient
  dependency-version: 7.0.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server
- dependency-name: Microsoft.Data.Sqlite
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server
- dependency-name: Microsoft.Extensions.Hosting.WindowsServices
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server
- dependency-name: NSwag.AspNetCore
  dependency-version: 14.7.1
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server
- dependency-name: System.Data.OleDb
  dependency-version: 10.0.7
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: server
- dependency-name: TUnit
  dependency-version: 1.40.5
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server
- dependency-name: Verify.TUnit
  dependency-version: 31.16.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server
- dependency-name: WireMock.Net
  dependency-version: 2.4.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: server
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .net code dependencies Pull requests that update a dependency file labels Apr 27, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .net code

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Nullable required fields are marked as not null in typescript & C#

0 participants