⬆️ Bump Microsoft.AspNetCore.Authentication.Facebook and 9 others #46

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

8.0.13

Release

What's Changed

[release/8.0] Update dotnetbuilds CDN to new endpoint by @mmitche in [release/8.0] Update dotnetbuilds CDN to new endpoint dotnet/aspnetcore#59575
Update branding to 8.0.13 by @vseanreesermsft in Update branding to 8.0.13 dotnet/aspnetcore#59756
[release/8.0] Skip MVC template tests on HelixQueueArmDebian12 by @wtgodbe in [release/8.0] Skip MVC template tests on HelixQueueArmDebian12 dotnet/aspnetcore#59295
[release/8.0] Update OSX helix queue by @github-actions in [release/8.0] Update OSX helix queue dotnet/aspnetcore#59742
[release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 dotnet/aspnetcore#59678
[release/8.0] Skip tests on internal queues too by @github-actions in [release/8.0] Skip tests on internal queues too dotnet/aspnetcore#59579
[release/8.0] Fix Kestrel host header mismatch handling when port in Url by @BrennanConroy in [release/8.0] Fix Kestrel host header mismatch handling when port in Url dotnet/aspnetcore#59403
Migrate off of Debian 11 by @v-firzha in Migrate off of Debian 11 dotnet/aspnetcore#59584
[release/8.0] Pin to S.T.J 8.0.5 in Analyzers by @wtgodbe in [release/8.0] Pin to S.T.J 8.0.5 in Analyzers dotnet/aspnetcore#59777
[release/8.0] [Blazor WASM standalone] Avoid caching index.html during development by @github-actions in [release/8.0] [Blazor WASM standalone] Avoid caching index.html during development dotnet/aspnetcore#59349
Update to Fedora 41 by @BrennanConroy in Update to Fedora 41 dotnet/aspnetcore#59817
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#59811
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59825
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59864
[release/8.0] Fix/update docker tags by @wtgodbe in [release/8.0] Fix/update docker tags dotnet/aspnetcore#59867
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#59872

Full Changelog: dotnet/aspnetcore@v8.0.12...v8.0.13

8.0.12

Release

What's Changed

Update branding to 8.0.12 by @vseanreesermsft in Update branding to 8.0.12 dotnet/aspnetcore#58800
[release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 dotnet/aspnetcore#58741
Add scope for internal npm packages by @BrennanConroy in Add scope for internal npm packages dotnet/aspnetcore#58512
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#58477
[release/8.0] Upgrade serialize-javascript transient dependency by @MackinnonBuck in [release/8.0] Upgrade serialize-javascript transient dependency dotnet/aspnetcore#58466
[release/8.0] Update Messagepack dependency by @wtgodbe in [release/8.0] Update Messagepack dependency dotnet/aspnetcore#58676
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#58898
[release/8.0] Use MacOS-13 in CI by @wtgodbe in [release/8.0] Use MacOS-13 in CI dotnet/aspnetcore#58549
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59065
[release/8.0] Fix java discovery in helix-matrix by @wtgodbe in [release/8.0] Fix java discovery in helix-matrix dotnet/aspnetcore#59181
[release/8.0] Update dependencies from dotnet/roslyn by @wtgodbe in [release/8.0] Update dependencies from dotnet/roslyn dotnet/aspnetcore#59184
[release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 dotnet/aspnetcore#59033

Full Changelog: dotnet/aspnetcore@v8.0.11...v8.0.12

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Authentication.Google from 8.0.11 to 8.0.21.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.Google's releases.

8.0.21

Release

What's Changed

Update branding to 8.0.21 by @vseanreesermsft in Update branding to 8.0.21 dotnet/aspnetcore#63509
[release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e dotnet/aspnetcore#63500
[release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key by @github-actions[bot] in [release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key dotnet/aspnetcore#63250
[release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job by @github-actions[bot] in [release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job dotnet/aspnetcore#63466
[release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough by @github-actions[bot] in [release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough dotnet/aspnetcore#63534
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63261
[release/8.0] Use wait assert in flaky tests by @ilonatommy in [release/8.0] Use wait assert in flaky tests dotnet/aspnetcore#63565
[release/8.0] Update Microsoft.Build versions by @github-actions[bot] in [release/8.0] Update Microsoft.Build versions dotnet/aspnetcore#62507
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63603
backport(8.0): Fix runtime architecture detection logic in ANCM by @DeagleGross in backport(8.0): Fix runtime architecture detection logic in ANCM dotnet/aspnetcore#63706

Full Changelog: dotnet/aspnetcore@v8.0.20...v8.0.21

8.0.20

Release

What's Changed

Update branding to 8.0.20 by @vseanreesermsft in Update branding to 8.0.20 dotnet/aspnetcore#63106
[release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e dotnet/aspnetcore#63038
[release/8.0] Dispose the certificate chain elements with the chain by @MackinnonBuck in [release/8.0] Dispose the certificate chain elements with the chain dotnet/aspnetcore#62994
[release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror by @github-actions[bot] in [release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror dotnet/aspnetcore#63117
[release/8.0] [SignalR] Don't throw for message headers in Java client by @github-actions[bot] in [release/8.0] [SignalR] Don't throw for message headers in Java client dotnet/aspnetcore#62784
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63152
[release/8.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63188
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63189

Full Changelog: dotnet/aspnetcore@v8.0.19...v8.0.20

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: dotnet/aspnetcore@v8.0.17...v8.0.18

8.0.17 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

8.0.13

Release

What's Changed

[release/8.0] Update dotnetbuilds CDN to new endpoint by @mmitche in [release/8.0] Update dotnetbuilds CDN to new endpoint dotnet/aspnetcore#59575
Update branding to 8.0.13 by @vseanreesermsft in Update branding to 8.0.13 dotnet/aspnetcore#59756
[release/8.0] Skip MVC template tests on HelixQueueArmDebian12 by @wtgodbe in [release/8.0] Skip MVC template tests on HelixQueueArmDebian12 dotnet/aspnetcore#59295
[release/8.0] Update OSX helix queue by @github-actions in [release/8.0] Update OSX helix queue dotnet/aspnetcore#59742
[release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 dotnet/aspnetcore#59678
[release/8.0] Skip tests on internal queues too by @github-actions in [release/8.0] Skip tests on internal queues too dotnet/aspnetcore#59579
[release/8.0] Fix Kestrel host header mismatch handling when port in Url by @BrennanConroy in [release/8.0] Fix Kestrel host header mismatch handling when port in Url dotnet/aspnetcore#59403
Migrate off of Debian 11 by @v-firzha in Migrate off of Debian 11 dotnet/aspnetcore#59584
[release/8.0] Pin to S.T.J 8.0.5 in Analyzers by @wtgodbe in [release/8.0] Pin to S.T.J 8.0.5 in Analyzers dotnet/aspnetcore#59777
[release/8.0] [Blazor WASM standalone] Avoid caching index.html during development by @github-actions in [release/8.0] [Blazor WASM standalone] Avoid caching index.html during development dotnet/aspnetcore#59349
Update to Fedora 41 by @BrennanConroy in Update to Fedora 41 dotnet/aspnetcore#59817
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#59811
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59825
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59864
[release/8.0] Fix/update docker tags by @wtgodbe in [release/8.0] Fix/update docker tags dotnet/aspnetcore#59867
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#59872

Full Changelog: dotnet/aspnetcore@v8.0.12...v8.0.13

8.0.12

Release

What's Changed

Update branding to 8.0.12 by @vseanreesermsft in Update branding to 8.0.12 dotnet/aspnetcore#58800
[release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 dotnet/aspnetcore#58741
Add scope for internal npm packages by @BrennanConroy in Add scope for internal npm packages dotnet/aspnetcore#58512
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#58477
[release/8.0] Upgrade serialize-javascript transient dependency by @MackinnonBuck in [release/8.0] Upgrade serialize-javascript transient dependency dotnet/aspnetcore#58466
[release/8.0] Update Messagepack dependency by @wtgodbe in [release/8.0] Update Messagepack dependency dotnet/aspnetcore#58676
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#58898
[release/8.0] Use MacOS-13 in CI by @wtgodbe in [release/8.0] Use MacOS-13 in CI dotnet/aspnetcore#58549
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59065
[release/8.0] Fix java discovery in helix-matrix by @wtgodbe in [release/8.0] Fix java discovery in helix-matrix dotnet/aspnetcore#59181
[release/8.0] Update dependencies from dotnet/roslyn by @wtgodbe in [release/8.0] Update dependencies from dotnet/roslyn dotnet/aspnetcore#59184
[release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 dotnet/aspnetcore#59033

Full Changelog: dotnet/aspnetcore@v8.0.11...v8.0.12

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Authentication.MicrosoftAccount from 8.0.11 to 8.0.21.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.MicrosoftAccount's releases.

8.0.21

Release

What's Changed

Update branding to 8.0.21 by @vseanreesermsft in Update branding to 8.0.21 dotnet/aspnetcore#63509
[release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e dotnet/aspnetcore#63500
[release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key by @github-actions[bot] in [release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key dotnet/aspnetcore#63250
[release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job by @github-actions[bot] in [release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job dotnet/aspnetcore#63466
[release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough by @github-actions[bot] in [release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough dotnet/aspnetcore#63534
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63261
[release/8.0] Use wait assert in flaky tests by @ilonatommy in [release/8.0] Use wait assert in flaky tests dotnet/aspnetcore#63565
[release/8.0] Update Microsoft.Build versions by @github-actions[bot] in [release/8.0] Update Microsoft.Build versions dotnet/aspnetcore#62507
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63603
backport(8.0): Fix runtime architecture detection logic in ANCM by @DeagleGross in backport(8.0): Fix runtime architecture detection logic in ANCM dotnet/aspnetcore#63706

Full Changelog: dotnet/aspnetcore@v8.0.20...v8.0.21

8.0.20

Release

What's Changed

Update branding to 8.0.20 by @vseanreesermsft in Update branding to 8.0.20 dotnet/aspnetcore#63106
[release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e dotnet/aspnetcore#63038
[release/8.0] Dispose the certificate chain elements with the chain by @MackinnonBuck in [release/8.0] Dispose the certificate chain elements with the chain dotnet/aspnetcore#62994
[release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror by @github-actions[bot] in [release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror dotnet/aspnetcore#63117
[release/8.0] [SignalR] Don't throw for message headers in Java client by @github-actions[bot] in [release/8.0] [SignalR] Don't throw for message headers in Java client dotnet/aspnetcore#62784
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63152
[release/8.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63188
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63189

Full Changelog: dotnet/aspnetcore@v8.0.19...v8.0.20

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: dotnet/aspnetcore@v8.0.17...v8.0.18

8.0.17 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

8.0.13

Release

What's Changed

[release/8.0] Update dotnetbuilds CDN to new endpoint by @mmitche in [release/8.0] Update dotnetbuilds CDN to new endpoint dotnet/aspnetcore#59575
Update branding to 8.0.13 by @vseanreesermsft in Update branding to 8.0.13 dotnet/aspnetcore#59756
[release/8.0] Skip MVC template tests on HelixQueueArmDebian12 by @wtgodbe in [release/8.0] Skip MVC template tests on HelixQueueArmDebian12 dotnet/aspnetcore#59295
[release/8.0] Update OSX helix queue by @github-actions in [release/8.0] Update OSX helix queue dotnet/aspnetcore#59742
[release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 dotnet/aspnetcore#59678
[release/8.0] Skip tests on internal queues too by @github-actions in [release/8.0] Skip tests on internal queues too dotnet/aspnetcore#59579
[release/8.0] Fix Kestrel host header mismatch handling when port in Url by @BrennanConroy in [release/8.0] Fix Kestrel host header mismatch handling when port in Url dotnet/aspnetcore#59403
Migrate off of Debian 11 by @v-firzha in Migrate off of Debian 11 dotnet/aspnetcore#59584
[release/8.0] Pin to S.T.J 8.0.5 in Analyzers by @wtgodbe in [release/8.0] Pin to S.T.J 8.0.5 in Analyzers dotnet/aspnetcore#59777
[release/8.0] [Blazor WASM standalone] Avoid caching index.html during development by @github-actions in [release/8.0] [Blazor WASM standalone] Avoid caching index.html during development dotnet/aspnetcore#59349
Update to Fedora 41 by @BrennanConroy in Update to Fedora 41 dotnet/aspnetcore#59817
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#59811
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59825
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59864
[release/8.0] Fix/update docker tags by @wtgodbe in [release/8.0] Fix/update docker tags dotnet/aspnetcore#59867
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#59872

Full Changelog: dotnet/aspnetcore@v8.0.12...v8.0.13

8.0.12

Release

What's Changed

Update branding to 8.0.12 by @vseanreesermsft in Update branding to 8.0.12 dotnet/aspnetcore#58800
[release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 dotnet/aspnetcore#58741
Add scope for internal npm packages by @BrennanConroy in Add scope for internal npm packages dotnet/aspnetcore#58512
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#58477
[release/8.0] Upgrade serialize-javascript transient dependency by @MackinnonBuck in [release/8.0] Upgrade serialize-javascript transient dependency dotnet/aspnetcore#58466
[release/8.0] Update Messagepack dependency by @wtgodbe in [release/8.0] Update Messagepack dependency dotnet/aspnetcore#58676
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#58898
[release/8.0] Use MacOS-13 in CI by @wtgodbe in [release/8.0] Use MacOS-13 in CI dotnet/aspnetcore#58549
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59065
[release/8.0] Fix java discovery in helix-matrix by @wtgodbe in [release/8.0] Fix java discovery in helix-matrix dotnet/aspnetcore#59181
[release/8.0] Update dependencies from dotnet/roslyn by @wtgodbe in [release/8.0] Update dependencies from dotnet/roslyn dotnet/aspnetcore#59184
[release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 dotnet/aspnetcore#59033

Full Changelog: dotnet/aspnetcore@v8.0.11...v8.0.12

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Identity.EntityFrameworkCore from 8.0.11 to 8.0.21.

Release notes

Sourced from Microsoft.AspNetCore.Identity.EntityFrameworkCore's releases.

8.0.21

Release

What's Changed

Update branding to 8.0.21 by @vseanreesermsft in Update branding to 8.0.21 dotnet/aspnetcore#63509
[release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e dotnet/aspnetcore#63500
[release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key by @github-actions[bot] in [release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key dotnet/aspnetcore#63250
[release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job by @github-actions[bot] in [release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job dotnet/aspnetcore#63466
[release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough by @github-actions[bot] in [release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough dotnet/aspnetcore#63534
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63261
[release/8.0] Use wait assert in flaky tests by @ilonatommy in [release/8.0] Use wait assert in flaky tests dotnet/aspnetcore#63565
[release/8.0] Update Microsoft.Build versions by @github-actions[bot] in [release/8.0] Update Microsoft.Build versions dotnet/aspnetcore#62507
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63603
backport(8.0): Fix runtime architecture detection logic in ANCM by @DeagleGross in backport(8.0): Fix runtime architecture detection logic in ANCM dotnet/aspnetcore#63706

Full Changelog: dotnet/aspnetcore@v8.0.20...v8.0.21

8.0.20

Release

What's Changed

Update branding to 8.0.20 by @vseanreesermsft in Update branding to 8.0.20 dotnet/aspnetcore#63106
[release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e dotnet/aspnetcore#63038
[release/8.0] Dispose the certificate chain elements with the chain by @MackinnonBuck in [release/8.0] Dispose the certificate chain elements with the chain dotnet/aspnetcore#62994
[release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror by @github-actions[bot] in [release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror dotnet/aspnetcore#63117
[release/8.0] [SignalR] Don't throw for message headers in Java client by @github-actions[bot] in [release/8.0] [SignalR] Don't throw for message headers in Java client dotnet/aspnetcore#62784
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63152
[release/8.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63188
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63189

Full Changelog: dotnet/aspnetcore@v8.0.19...v8.0.20

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: dotnet/aspnetcore@v8.0.17...v8.0.18

8.0.17 Bug Fixes

Forwarded Headers Middleware: Ignore X-Forwarded-Headers from Unknown Proxy (#61623)
The Forwarded Headers Middleware now ignores X-Forwarded-Headers sent from unknown proxies. This change improves security by ensuring that only trusted proxies can influence the forwarded headers, preventing potential spoofing or misrouting of requests.

Dependency Updates

Update dependencies from dotnet/arcade (#61832)
This update brings in the latest changes from the dotnet/arcade repository, ensuring that ASP.NET Core benefits from recent improvements, bug fixes, and security patches in the shared build infrastructure.
Bump src/submodules/googletest from 52204f7 to 04ee1b4 (#61761)
The GoogleTest submodule has been updated to a newer commit, providing the latest testing features, bug fixes, and performance improvements for the project's C++ test components.

Miscellaneous

Update branding to 8.0.17 (#61830)
The project version branding has been updated to reflect the new 8.0.17 release, ensuring consistency across build outputs and documentation.
Merging internal commits for release/8.0 (#61924)
This change merges various internal commits into the release/8.0 branch, incorporating minor fixes, documentation updates, and other non-user-facing improvements to keep the release branch up to date.

This summary is generated and may contain inaccuracies. For complete details, please review the linked pull requests.

Full Changelog: dotnet/aspnetcore@v8.0.16...v8.0.17

8.0.16

Release

What's Changed

Update branding to 8.0.16 by @vseanreesermsft in Update branding to 8.0.16 dotnet/aspnetcore#61283
[release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 24a9e94 to 52204f7 dotnet/aspnetcore#61260
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#61281
[release/8.0] Upgrade to Ubuntu 22 by @wtgodbe in [release/8.0] Upgrade to Ubuntu 22 dotnet/aspnetcore#61216
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60901
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#60926
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61404
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#61398
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61411
Revert "Revert "[release/8.0] Update remnants of azureedge.net"" by @wtgodbe in Revert "Revert "[release/8.0] Update remnants of azureedge.net"" dotnet/aspnetcore#60352
[release/8.0] Fix preserving messages for stateful reconnect with backplane by @BrennanConroy in [release/8.0] Fix preserving messages for stateful reconnect with backplane dotnet/aspnetcore#61375
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#61442
fetch TLS client hello message from HTTP.SYS by @BrennanConroy in fetch TLS client hello message from HTTP.SYS dotnet/aspnetcore#61494

Full Changelog: dotnet/aspnetcore@v8.0.15...v8.0.16

8.0.15

Release

What's Changed

[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#60355
Update branding to 8.0.15 by @vseanreesermsft in Update branding to 8.0.15 dotnet/aspnetcore#60784
Add partitioned to cookie for SignalR browser testing by @BrennanConroy in Add partitioned to cookie for SignalR browser testing dotnet/aspnetcore#60728
[release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from e235eb3 to 24a9e94 dotnet/aspnetcore#60677
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60879

Full Changelog: dotnet/aspnetcore@v8.0.14...v8.0.15

8.0.14

Release

What's Changed

Update branding to 8.0.14 by @vseanreesermsft in Update branding to 8.0.14 dotnet/aspnetcore#60197
[release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 7d76a23 to e235eb3 dotnet/aspnetcore#60150
[release/8.0] Fix java discovery in IdentityModel pipeline by @wtgodbe in [release/8.0] Fix java discovery in IdentityModel pipeline dotnet/aspnetcore#60075
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#60199
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59922
[release/8.0] Readd DiagnosticSource to KestrelServerImpl by @github-actions in [release/8.0] Readd DiagnosticSource to KestrelServerImpl dotnet/aspnetcore#60203
[release/8.0] Update to MacOS 15 in Helix by @github-actions in [release/8.0] Update to MacOS 15 in Helix dotnet/aspnetcore#60239
[release/8.0] Use the latest available JDK by @wtgodbe in [release/8.0] Use the latest available JDK dotnet/aspnetcore#60233
[release/8.0] Fix skip condition for java tests by @github-actions in [release/8.0] Fix skip condition for java tests dotnet/aspnetcore#60243
[release/8.0] Update list of helix queues to skip by @wtgodbe in [release/8.0] Update list of helix queues to skip dotnet/aspnetcore#60231
[release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification by @github-actions in [release/8.0] [Blazor] Allow cascading value subscribers to get added and removed during change notification dotnet/aspnetcore#57288
[release/8.0] Update remnants of azureedge.net by @sebastienros in [release/8.0] Update remnants of azureedge.net dotnet/aspnetcore#60264
[release/8.0] Centralize on one docker container by @wtgodbe in [release/8.0] Centralize on one docker container dotnet/aspnetcore#60299
Revert "[release/8.0] Update remnants of azureedge.net" by @wtgodbe in Revert "[release/8.0] Update remnants of azureedge.net" dotnet/aspnetcore#60324
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#60316

Full Changelog: dotnet/aspnetcore@v8.0.13...v8.0.14

8.0.13

Release

What's Changed

[release/8.0] Update dotnetbuilds CDN to new endpoint by @mmitche in [release/8.0] Update dotnetbuilds CDN to new endpoint dotnet/aspnetcore#59575
Update branding to 8.0.13 by @vseanreesermsft in Update branding to 8.0.13 dotnet/aspnetcore#59756
[release/8.0] Skip MVC template tests on HelixQueueArmDebian12 by @wtgodbe in [release/8.0] Skip MVC template tests on HelixQueueArmDebian12 dotnet/aspnetcore#59295
[release/8.0] Update OSX helix queue by @github-actions in [release/8.0] Update OSX helix queue dotnet/aspnetcore#59742
[release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from d144031 to 7d76a23 dotnet/aspnetcore#59678
[release/8.0] Skip tests on internal queues too by @github-actions in [release/8.0] Skip tests on internal queues too dotnet/aspnetcore#59579
[release/8.0] Fix Kestrel host header mismatch handling when port in Url by @BrennanConroy in [release/8.0] Fix Kestrel host header mismatch handling when port in Url dotnet/aspnetcore#59403
Migrate off of Debian 11 by @v-firzha in Migrate off of Debian 11 dotnet/aspnetcore#59584
[release/8.0] Pin to S.T.J 8.0.5 in Analyzers by @wtgodbe in [release/8.0] Pin to S.T.J 8.0.5 in Analyzers dotnet/aspnetcore#59777
[release/8.0] [Blazor WASM standalone] Avoid caching index.html during development by @github-actions in [release/8.0] [Blazor WASM standalone] Avoid caching index.html during development dotnet/aspnetcore#59349
Update to Fedora 41 by @BrennanConroy in Update to Fedora 41 dotnet/aspnetcore#59817
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#59811
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#59825
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59864
[release/8.0] Fix/update docker tags by @wtgodbe in [release/8.0] Fix/update docker tags dotnet/aspnetcore#59867
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#59872

Full Changelog: dotnet/aspnetcore@v8.0.12...v8.0.13

8.0.12

Release

What's Changed

Update branding to 8.0.12 by @vseanreesermsft in Update branding to 8.0.12 dotnet/aspnetcore#58800
[release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 6dae7eb to 1204d63 dotnet/aspnetcore#58741
Add scope for internal npm packages by @BrennanConroy in Add scope for internal npm packages dotnet/aspnetcore#58512
[release/8.0] Update dependencies from dotnet/source-build-externals by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-externals dotnet/aspnetcore#58477
[release/8.0] Upgrade serialize-javascript transient dependency by @MackinnonBuck in [release/8.0] Upgrade serialize-javascript transient dependency dotnet/aspnetcore#58466
[release/8.0] Update Messagepack dependency by @wtgodbe in [release/8.0] Update Messagepack dependency dotnet/aspnetcore#58676
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#58898
[release/8.0] Use MacOS-13 in CI by @wtgodbe in [release/8.0] Use MacOS-13 in CI dotnet/aspnetcore#58549
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#59065
[release/8.0] Fix java discovery in helix-matrix by @wtgodbe in [release/8.0] Fix java discovery in helix-matrix dotnet/aspnetcore#59181
[release/8.0] Update dependencies from dotnet/roslyn by @wtgodbe in [release/8.0] Update dependencies from dotnet/roslyn dotnet/aspnetcore#59184
[release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 1204d63 to d144031 dotnet/aspnetcore#59033

Full Changelog: dotnet/aspnetcore@v8.0.11...v8.0.12

Commits viewable in compare view.

Updated Microsoft.AspNetCore.Identity.UI from 8.0.11 to 8.0.21.

Release notes

Sourced from Microsoft.AspNetCore.Identity.UI's releases.

8.0.21

Release

What's Changed

Update branding to 8.0.21 by @vseanreesermsft in Update branding to 8.0.21 dotnet/aspnetcore#63509
[release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from 373af2e to eb2d85e dotnet/aspnetcore#63500
[release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key by @github-actions[bot] in [release/8.0] Make duplicate deb/rpm packages so we can sign them with the new PMC key dotnet/aspnetcore#63250
[release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job by @github-actions[bot] in [release/8.0] Extend Unofficial 1ES template in IdentityModel nightly tests job dotnet/aspnetcore#63466
[release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough by @github-actions[bot] in [release/8.0] Quarantine ResponseBody_WriteContentLength_PassedThrough dotnet/aspnetcore#63534
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#63261
[release/8.0] Use wait assert in flaky tests by @ilonatommy in [release/8.0] Use wait assert in flaky tests dotnet/aspnetcore#63565
[release/8.0] Update Microsoft.Build versions by @github-actions[bot] in [release/8.0] Update Microsoft.Build versions dotnet/aspnetcore#62507
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63603
backport(8.0): Fix runtime architecture detection logic in ANCM by @DeagleGross in backport(8.0): Fix runtime architecture detection logic in ANCM dotnet/aspnetcore#63706

Full Changelog: dotnet/aspnetcore@v8.0.20...v8.0.21

8.0.20

Release

What's Changed

Update branding to 8.0.20 by @vseanreesermsft in Update branding to 8.0.20 dotnet/aspnetcore#63106
[release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e by @dependabot[bot] in [release/8.0] (deps): Bump src/submodules/googletest from c67de11 to 373af2e dotnet/aspnetcore#63038
[release/8.0] Dispose the certificate chain elements with the chain by @MackinnonBuck in [release/8.0] Dispose the certificate chain elements with the chain dotnet/aspnetcore#62994
[release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror by @github-actions[bot] in [release/8.0] Update SignalR Redis tests to use internal Docker Hub mirror dotnet/aspnetcore#63117
[release/8.0] [SignalR] Don't throw for message headers in Java client by @github-actions[bot] in [release/8.0] [SignalR] Don't throw for message headers in Java client dotnet/aspnetcore#62784
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#63152
[release/8.0] Update dependencies from dotnet/extensions by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/extensions dotnet/aspnetcore#63188
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro[bot] in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#63189

Full Changelog: dotnet/aspnetcore@v8.0.19...v8.0.20

8.0.18

Release

What's Changed

Update branding to 8.0.18 by @vseanreesermsft in Update branding to 8.0.18 dotnet/aspnetcore#62241
[release/8.0] Update Alpine helix references by @github-actions in [release/8.0] Update Alpine helix references dotnet/aspnetcore#62243
[release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 by @dependabot in [release/8.0] (deps): Bump src/submodules/googletest from 04ee1b4 to e9092b1 dotnet/aspnetcore#62201
[8.0] Delete src/arcade directory by @akoeplinger in [8.0] Delete src/arcade directory dotnet/aspnetcore#61994
[Backport 8.0] [IIS] Manually parse exe bitness (#61894) by @BrennanConroy in [Backport 8.0] [IIS] Manually parse exe bitness (#61894) dotnet/aspnetcore#62037
[release/8.0] Update dependencies from dotnet/source-build-reference-packages by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/source-build-reference-packages dotnet/aspnetcore#62006
[release/8.0] Update dependencies from dotnet/arcade by @dotnet-maestro in [release/8.0] Update dependencies from dotnet/arcade dotnet/aspnetcore#61944
[release/8.0] Associate tagged keys with entries so replacements are not evicted by @github-actions in [release/8.0] Associate tagged keys with entries so replacements are not evicted dotnet/aspnetcore#62247
[release/8.0] Block test that is failing after switching to latest-chrome by @github-actions in [release/8.0] Block test that is failing after switching to latest-chrome dotnet/aspnetcore#62284
backport(net8.0): http.sys on-demand TLS client hello retrieval by @DeagleGross in backport(net8.0): http.sys on-demand TLS client hello retrieval dotnet/aspnetcore#62290
Merging internal commits for release/8.0 by @vseanreesermsft in Merging internal commits for release/8.0 dotnet/aspnetcore#62302

Full Changelog: https://git...

Description has been truncated

dependabot · 2025-10-24T19:51:12Z

Labels

The following labels could not be found: dependencies, nuget, security. Please create them before Dependabot can add them to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

Bumps Microsoft.AspNetCore.Authentication.Facebook from 8.0.11 to 8.0.21 Bumps Microsoft.AspNetCore.Authentication.Google from 8.0.11 to 8.0.21 Bumps Microsoft.AspNetCore.Authentication.MicrosoftAccount from 8.0.11 to 8.0.21 Bumps Microsoft.AspNetCore.Identity.EntityFrameworkCore from 8.0.11 to 8.0.21 Bumps Microsoft.AspNetCore.Identity.UI from 8.0.11 to 8.0.21 Bumps Microsoft.EntityFrameworkCore.InMemory from 8.0.11 to 8.0.21 Bumps Microsoft.EntityFrameworkCore.Sqlite from 8.0.11 to 8.0.21 Bumps Microsoft.EntityFrameworkCore.SqlServer from 8.0.11 to 8.0.21 Bumps Microsoft.EntityFrameworkCore.Tools from 8.0.11 to 8.0.21 Bumps Microsoft.Identity.Client from 4.61.3 to 4.78.0 --- updated-dependencies: - dependency-name: Microsoft.AspNetCore.Authentication.Facebook dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.AspNetCore.Authentication.Google dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.AspNetCore.Authentication.MicrosoftAccount dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.AspNetCore.Identity.EntityFrameworkCore dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.AspNetCore.Identity.UI dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.EntityFrameworkCore.InMemory dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.EntityFrameworkCore.Sqlite dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.EntityFrameworkCore.SqlServer dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.EntityFrameworkCore.Tools dependency-version: 8.0.21 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: microsoft-packages - dependency-name: Microsoft.Identity.Client dependency-version: 4.78.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: microsoft-packages ... Signed-off-by: dependabot[bot] <[email protected]>

github-actions · 2025-10-26T20:57:44Z

🛡️ Security Scan Summary

Scan Date: Sun Oct 26 20:57:42 UTC 2025
Commit: 40b3dd4

🔍 Scan Results

Tool	Status	Details
TruffleHog	✅ Secure	No secrets detected
.NET Vulnerability Scan	ℹ️ Skipped	Scan not executed
CodeQL	📊 Uploaded	Results uploaded to GitHub Security tab - manual review required
Semgrep SAST	✅ Secure	No security issues detected
Trivy Filesystem	ℹ️ Skipped	Scan not executed
OWASP Dependency Check	ℹ️ Skipped	Scan not executed
OWASP ZAP Dynamic Scan	ℹ️ Skipped	Scan not executed
Security Configuration	ℹ️ Skipped	Audit not executed

⚠️ CRITICAL: CodeQL Security Analysis

IMPORTANT: This summary may show CodeQL as 'secure' even if issues exist.
ALWAYS check the GitHub Security Tab for CodeQL findings.
High/Critical CodeQL issues MUST be resolved before merge, regardless of this summary.

📋 Recommendations

PRIORITY: Check GitHub Security tab for CodeQL findings
Fix all high/critical CodeQL issues before merge
Review all findings in the Security tab
Update vulnerable dependencies promptly
Follow secure coding practices from copilot-instructions.md
Regular security reviews and updates

Security scan generated by Setlist Studio CI/CD Pipeline 🔒

dependabot bot assigned eugenecp Oct 24, 2025

dependabot bot force-pushed the dependabot/nuget/src/SetlistStudio.Web/microsoft-packages-4638f27507 branch from e28fc4c to 2370a5d Compare October 26, 2025 20:56

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

⬆️ Bump Microsoft.AspNetCore.Authentication.Facebook and 9 others #46

⬆️ Bump Microsoft.AspNetCore.Authentication.Facebook and 9 others #46

dependabot bot commented on behalf of github Oct 24, 2025 •

edited

Loading

Uh oh!

dependabot bot commented on behalf of github Oct 24, 2025

Uh oh!

github-actions bot commented Oct 26, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Uh oh!

⬆️ Bump Microsoft.AspNetCore.Authentication.Facebook and 9 others #46

Are you sure you want to change the base?

⬆️ Bump Microsoft.AspNetCore.Authentication.Facebook and 9 others #46

Conversation

dependabot bot commented on behalf of github Oct 24, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

8.0.21

What's Changed

8.0.20

What's Changed

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

What's Changed

8.0.14

What's Changed

8.0.13

What's Changed

8.0.12

What's Changed

8.0.21

What's Changed

8.0.20

What's Changed

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

What's Changed

8.0.14

What's Changed

8.0.13

What's Changed

8.0.12

What's Changed

8.0.21

What's Changed

8.0.20

What's Changed

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

What's Changed

8.0.14

What's Changed

8.0.13

What's Changed

8.0.12

What's Changed

8.0.21

What's Changed

8.0.20

What's Changed

8.0.18

What's Changed

8.0.17

Bug Fixes

Dependency Updates

Miscellaneous

8.0.16

What's Changed

8.0.15

dependabot bot commented on behalf of github Oct 24, 2025 •

edited

Loading