Skip to content

Bump Microsoft.Identity.Abstractions from 10.0.0 to 12.3.0#141

Closed
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/src/Microsoft.Identity.Abstractions-12.3.0
Closed

Bump Microsoft.Identity.Abstractions from 10.0.0 to 12.3.0#141
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/src/Microsoft.Identity.Abstractions-12.3.0

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Contributor

Updated Microsoft.Identity.Abstractions from 10.0.0 to 12.3.0.

Release notes

Sourced from Microsoft.Identity.Abstractions's releases.

12.3.0

What's Changed

New Contributors

Full Changelog: AzureAD/microsoft-identity-abstractions-for-dotnet@12.1.0...12.3.0

12.1.0

Added UseBoundCredential property to CredentialDescription to opt in to Bearer-over-mTLS authentication on a per-credential basis. Defaults to false, so existing configurations are unaffected. Consumer libraries (Microsoft.Identity.Web) read this property at credential-load time to either present a certificate over mTLS for Certificate-type credentials, or wire a bound-credential bundle (signed assertion + binding certificate) for SignedAssertionFromManagedIdentity-type credentials. See PR #​252(AzureAD/microsoft-identity-abstractions-for-dotnet#252).

12.0.0

What's Changed

  • Revert breaking changes introduced in Abstractions 11.0.0. On .NET 10 target, CachedValue and Certificate extension methods in CredentialDescription were reverted to normal properties. See #​250.

11.2.0

What's Changed

Full Changelog: AzureAD/microsoft-identity-abstractions-for-dotnet@11.1.0...11.2.0

11.1.0

New features

  • Added StoreWithSubjectName credential source. See PR #​245.

11.0.0

Breaking changes

If you build code with the .NET 10 target framework and get this error:

error CS9260: Feature 'extensions' is not available in C# 13.0. Please use language version 14.0 or greater.

make sure you update the LangVersion property in your project to 14 or later.

AOT/NativeAOT Compatibility for .NET 10+

Made CredentialDescription AOT-compatible for .NET 10+ by using C# 14 extension properties. This is a binary breaking change (though source compatible) for .NET 10+ targets:

  • Removes Certificate and CachedValue as public properties from CredentialDescription when targeting .NET 10+
  • Adds extension properties with the same names and signatures for .NET 10+, providing property-style access
  • Maintains full source compatibility - no code changes required for consumers provided the .NET 10 code is built with C#​14 or later.
  • Prevents AOT/NativeAOT configuration binding issues with reference-typed properties
  • Keeps existing behavior for older target frameworks (netstandard2.0, netstandard2.1, net462, net8.0, net9.0)

Technical details:

  • For .NET 10+: Certificate and CachedValue are implemented as extension properties (not visible to config binders)
  • For older TFMs: Certificate and CachedValue remain as regular public properties
  • LangVersion updated to 14 to enable C# 14 extension property syntax
  • Internal accessor methods (GetCertificateInternal, SetCertificateInternal, etc.) support extension properties

This enhancement ensures CredentialDescription works seamlessly in AOT/NativeAOT compilation scenarios while maintaining backward compatibility.

New features

  • Make CredentialDescription AOT-compatible via C# 14 extension properties (v11.0.0). See PR #​238.

Bug fixes

  • Invalidate _cachedId in all property setters that affect Id computation. See PR #​240.

Fundamentals

  • Add codebase navigation guides and architecture decision records. See PR #​241.

Commits viewable in compare view.

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

---
updated-dependencies:
- dependency-name: Microsoft.Identity.Abstractions
  dependency-version: 12.3.0
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added .NET Pull requests that update .NET code dependencies Pull requests that update a dependency file labels Jun 30, 2026
@dependabot @github

dependabot Bot commented on behalf of github Jul 1, 2026

Copy link
Copy Markdown
Contributor Author

Superseded by #143.

@dependabot dependabot Bot closed this Jul 1, 2026
@dependabot dependabot Bot deleted the dependabot/nuget/src/Microsoft.Identity.Abstractions-12.3.0 branch July 1, 2026 13:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file .NET Pull requests that update .NET code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants