Bump the all-packages group with 6 updates by dependabot[bot] · Pull Request #531 · UKHO/exchange-set-service

Disable automatic redirects on default HttpClient for JKU retrieval. See PR #3494.
Adjust rented buffer handling in claim set parsing. See PR #3493.
Tidy null handling in SAML conditions validation. See PR #3491.
Improve validation of jku claim. See PR #3481.
Limit telemetry algorithm dimension cardinality. See PR #3490.
Add defensive copy of collections in ValidationParameters. See PR #3492.
Update TokenValidationParameter copy constructor to make a deep copy. See PR #3488.
Update to fail-closed when replay protection isn't configured and other DPoP hardening. See PR #3505.
Apply RFC 3986 section 6.2.2 normalization to DPoP htu comparison. See PR #3509.

Commits viewable in compare view.

Updated Microsoft.NET.Test.Sdk from 18.5.1 to 18.6.0.

Release notes

Sourced from Microsoft.NET.Test.Sdk's releases.

18.6.0 What's Changed

Revert removal of Video Recorder by @nohwnd in Revert removal of Video Recorder microsoft/vstest#15336
Speed up blame by filtering non-.NET processes from dump collection by @nohwnd in Speed up blame tests by filtering non-.NET processes from dump collection microsoft/vstest#15518
Add README.md to NuGet packages by @nohwnd in Add README.md to NuGet packages microsoft/vstest#15550
Report child process info on connection timeout by @nohwnd in Report child process info on connection timeout microsoft/vstest#15603

Changes to tests and infra

Brand as 18.6 by @nohwnd in Brand as 18.6 microsoft/vstest#15423
Upgrading code coverage version to 18.5.1, by @fhnaseer in Upgrading code coverage version to 18.5.1, microsoft/vstest#15422
Updating System.Collections.Immutable to 9.0.11 by @MSLukeWest in Updating System.Collections.Immutable to 9.0.11 microsoft/vstest#15425
Fix attachVS when used for debugging integration tests by @nohwnd in Fix attachVS when used for debugging integration tests microsoft/vstest#15451
Replace dotnet.config, with global.json by @nohwnd in Replace dotnet.config, with global.json microsoft/vstest#15449
Document debugging integration tests with AttachVS by @Copilot in Document debugging integration tests with AttachVS microsoft/vstest#15452
Fix stack overflow tests by @nohwnd in Fix stack overflow tests microsoft/vstest#15461
Make TestAssets.sln buildable locally by @Youssef1313 in Make TestAssets.sln buildable locally microsoft/vstest#15466
Try filtering out tests by @nohwnd in Try filtering out tests microsoft/vstest#15463
Build just once when tfms run in parallel by @nohwnd in Build just once when tfms run in parallel microsoft/vstest#15465
Review simplify compatibility sources, deduplicate tests by @nohwnd in Review simplify compatibility sources, deduplicate tests microsoft/vstest#15472
Cleanup dead TRX code by @Youssef1313 in Cleanup dead TRX code microsoft/vstest#15474
Update .NET runtimes to 8.0.25, 9.0.14, and 10.0.4 by @nohwnd in Update .NET runtimes to 8.0.25, 9.0.14, and 10.0.4 microsoft/vstest#15481
Compat matrix checker by @nohwnd in Compat matrix checker microsoft/vstest#15480
Add trx analysis skill by @nohwnd in Add trx analysis skill microsoft/vstest#15486
Split integration tests to single tfm and multi tfm project by @nohwnd in Split integration tests to single tfm and multi tfm project microsoft/vstest#15484
Update matrix by @nohwnd in Update matrix microsoft/vstest#15477
Break infinite restore loop in VS by @nohwnd in Break infinite restore loop in VS microsoft/vstest#15503
Use global package cache for build, and local for running integration tests by @nohwnd in Use global package cache for build, and local for running integration tests microsoft/vstest#15500
Update contributing by @nohwnd in Update contributing microsoft/vstest#15505
Reduce test wall-clock time by increasing minThreads by @drognanar in Reduce test wall-clock time by increasing minThreads microsoft/vstest#15502
Indicator flakiness by @nohwnd in Indicator flakiness microsoft/vstest#15513
Fix ci build by @nohwnd in Fix ci build microsoft/vstest#15515
Fix thread safety issues by @Evangelink in Fix thread safety issues microsoft/vstest#15512
Optimize DotnetSDKSimulation_PostProcessing test (163s → 61s) by @nohwnd in Optimize DotnetSDKSimulation_PostProcessing test (163s → 61s) microsoft/vstest#15516
Build isolated test assets for single TFM instead of 7 by @nohwnd in Build isolated test assets for single TFM instead of 7 microsoft/vstest#15517
Remove unused dependencies from Library.IntegrationTests by @nohwnd in Remove unused dependencies from Library.IntegrationTests microsoft/vstest#15527
Remove printing _attachments content to console by @nohwnd in Remove printing _attachments content to console microsoft/vstest#15520
Add Linux/macOS test filtering guide to CONTRIBUTING.md by @nohwnd in Add Linux/macOS test filtering guide to CONTRIBUTING.md microsoft/vstest#15521
Change integration test parallelization from ClassLevel to MethodLevel by @nohwnd in Change integration test parallelization from ClassLevel to MethodLevel microsoft/vstest#15526
Unify target framework checks with IsNetFrameworkTarget/IsNetTarget by @nohwnd in Unify target framework checks with IsNetFrameworkTarget/IsNetTarget microsoft/vstest#15523
Add unattended work instructions to copilot-instructions.md by @nohwnd in Add unattended work instructions to copilot-instructions.md microsoft/vstest#15531
Reduce code style rule severity from warning to suggestion by @nohwnd in Reduce code style rule severity from warning to suggestion microsoft/vstest#15522
Remove Debug/Release line number branching from tests by @nohwnd in Remove Debug/Release line number branching from tests microsoft/vstest#15519
Revise unattended work instructions in copilot-instructions.md by @nohwnd in Revise unattended work instructions in copilot-instructions.md microsoft/vstest#15532
Improve CompatibilityRowsBuilder error message with diagnostic details by @nohwnd in Improve CompatibilityRowsBuilder error message with diagnostic details microsoft/vstest#15529
docs: add git worktree and upstream sync workflow to copilot-instructions.md by @nohwnd in docs: add git worktree and upstream sync workflow to copilot-instructions.md microsoft/vstest#15538
Add VSIX runner to smoke tests by @nohwnd in Add VSIX runner to smoke tests microsoft/vstest#15541
Remove deprecated WebTest and TMI test methods by @nohwnd in Remove deprecated WebTest and TMI test methods microsoft/vstest#15525
Fix compatibility test failures for legacy vstest.console and MSTest adapter by @nohwnd in Fix compatibility test failures for legacy vstest.console and MSTest adapter microsoft/vstest#15534
Convert TestPlatform.sln to slnx format by @nohwnd in Convert TestPlatform.sln to slnx format microsoft/vstest#15551
Convert test/TestAssets .sln files to .slnx format by @nohwnd in Convert test/TestAssets .sln files to .slnx format microsoft/vstest#15557
... (truncated)

Commits viewable in compare view.

Updated NUnit.Analyzers from 4.13.0 to 4.14.0.

Release notes

Sourced from NUnit.Analyzers's releases.

4.14.0

NUnit Analyzers 4.14 - June 1, 2026

This release of the NUnit Analyzers adds a new analyzer and associated codefix - NUnit2059 - that helps ensure that
async assertion methods in NUnit version 5 and higher - i.e. Assert.ThrowsAsync, Assert.CatchAsync, and
Assert.DoesNotThrowAsync - have their results observed, as these methods are awaitable from NUnit version 5.

The release contains contributions from the following users (in alphabetical order):

@manfred-brands
@mikkelbu

Issues Resolved

Features and Enhancements

#988 Recognize that Assert.ThrowsAsync etc now return a Task that needs awaiting.

Tooling, Process, and Documentation

#990 Bump cake.tool from 6.1.0 to 6.2.0
#987 chore: bump version and correct errors in CHANGES.md

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

Bumps Elastic.Apm from 1.34.1 to 1.34.2 Bumps Elastic.Apm.Azure.Storage from 1.34.1 to 1.34.2 Bumps Elastic.Apm.NetCoreAll from 1.34.1 to 1.34.2 Bumps Microsoft.IdentityModel.Logging from 8.18.0 to 8.19.0 Bumps Microsoft.NET.Test.Sdk from 18.5.1 to 18.6.0 Bumps NUnit.Analyzers from 4.13.0 to 4.14.0 --- updated-dependencies: - dependency-name: Elastic.Apm dependency-version: 1.34.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-packages - dependency-name: Elastic.Apm.Azure.Storage dependency-version: 1.34.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-packages - dependency-name: Elastic.Apm.NetCoreAll dependency-version: 1.34.2 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: all-packages - dependency-name: Microsoft.IdentityModel.Logging dependency-version: 8.19.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: Microsoft.NET.Test.Sdk dependency-version: 18.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: Microsoft.NET.Test.Sdk dependency-version: 18.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: Microsoft.NET.Test.Sdk dependency-version: 18.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: Microsoft.NET.Test.Sdk dependency-version: 18.6.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: NUnit.Analyzers dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: NUnit.Analyzers dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: NUnit.Analyzers dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages - dependency-name: NUnit.Analyzers dependency-version: 4.14.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: all-packages ... Signed-off-by: dependabot[bot] <support@github.com>

snyk-io-eu · 2026-06-02T19:42:27Z

✅ Snyk checks have passed. No issues have been found so far.

Status	Scan Engine	Critical	High	Medium	Low	Total (0)
✅	Open Source Security	0	0	0	0	0 issues
✅	Licenses	0	0	0	0	0 issues
✅	Code Security	0	0	0	0	0 issues

💻 Catch issues earlier using the plugins for VS Code, JetBrains IDEs, Visual Studio, and Eclipse.

dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Jun 2, 2026

dependabot Bot requested review from a team and rockydevnet as code owners June 2, 2026 19:42

dependabot Bot added dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code labels Jun 2, 2026

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Bump the all-packages group with 6 updates#531

Bump the all-packages group with 6 updates#531
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/UKHO.ExchangeSetService.API/UKHO.ExchangeSetService.API.FunctionalTests/all-packages-27304e5757

dependabot Bot commented on behalf of github Jun 2, 2026

Uh oh!

snyk-io-eu Bot commented Jun 2, 2026 •

edited

Loading

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

dependabot Bot commented on behalf of github Jun 2, 2026

1.34.2

What's Changed

Bug fixes

New Contributors

1.34.2

What's Changed

Bug fixes

New Contributors

1.34.2

What's Changed

Bug fixes

New Contributors

8.19.0

New Features

Bug Fixes

18.6.0

What's Changed

Changes to tests and infra

4.14.0

Uh oh!

snyk-io-eu Bot commented Jun 2, 2026 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

✅ Snyk checks have passed. No issues have been found so far.

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

snyk-io-eu Bot commented Jun 2, 2026 •

edited

Loading