deps(nuget): Bump the microsoft-dependencies group with 6 updates

[dependabot]

Updated Microsoft.AspNetCore.Authentication.OpenIdConnect from 10.0.1 to 10.0.3.

Release notes

Sourced from Microsoft.AspNetCore.Authentication.OpenIdConnect's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.AspNetCore.OpenApi from 10.0.1 to 10.0.3.

Release notes

Sourced from Microsoft.AspNetCore.OpenApi's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.AspNetCore.SpaProxy from 10.0.1 to 10.0.3.

Release notes

Sourced from Microsoft.AspNetCore.SpaProxy's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.ApiDescription.Server from 10.0.1 to 10.0.3.

Release notes

Sourced from Microsoft.Extensions.ApiDescription.Server's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated Microsoft.Extensions.Http.Resilience from 10.1.0 to 10.3.0.

Release notes

Sourced from Microsoft.Extensions.Http.Resilience's releases.

10.3.0

What's Changed

• Bump version to 10.3.0 for next development cycle by @​Copilot in Bump version to 10.3.0 for next development cycle dotnet/extensions#7197
• Fix race condition in UnreliableL2Tests.WriteFailureInvisible by @​Copilot in Fix race condition in UnreliableL2Tests.WriteFailureInvisible dotnet/extensions#7075
• Set Microsoft.McpServer.ProjectTemplates version to align with MCP packages by @​jeffhandley in Set Microsoft.McpServer.ProjectTemplates version to align with MCP packages dotnet/extensions#7170
• ToChatResponse: Merge AdditionalProperties into ChatMessage instead of ChatResponse by @​Copilot in ToChatResponse: Merge AdditionalProperties into ChatMessage instead of ChatResponse dotnet/extensions#7194
• Fix NRT resolution for AIFunction parameters. by @​eiriktsarpalis in Fix NRT resolution for AIFunction parameters. dotnet/extensions#7200
• Bump mdast-util-to-hast from 13.2.0 to 13.2.1 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @​dependabot[bot] in Bump mdast-util-to-hast from 13.2.0 to 13.2.1 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#7198
• Add .npmrc next to package.json and add lockfile for PublishAIEvaluationReport by @​akoeplinger in Add .npmrc next to package.json and add lockfile for PublishAIEvaluationReport dotnet/extensions#7108
• Bump qs from 6.14.0 to 6.14.1 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @​dependabot[bot] in Bump qs from 6.14.0 to 6.14.1 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#7189
• Bump js-yaml from 4.1.0 to 4.1.1 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @​dependabot[bot] in Bump js-yaml from 4.1.0 to 4.1.1 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#7054
• Bump validator from 13.15.20 to 13.15.23 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @​dependabot[bot] in Bump validator from 13.15.20 to 13.15.23 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#7103
• Update AI changelogs by @​stephentoub in Update AI changelogs dotnet/extensions#7206
• Merge changes from internal after 10.2 release by @​joperezr in Merge changes from internal after 10.2 release dotnet/extensions#7205
• Merge changes from release/10.2 to main by @​joperezr in Merge changes from release/10.2 to main dotnet/extensions#7209
• Categorize MEAI001 experimental APIs by @​Copilot in Categorize MEAI001 experimental APIs dotnet/extensions#7116
• [main] Update dependencies from dotnet/arcade by @​dotnet-maestro[bot] in [main] Update dependencies from dotnet/arcade dotnet/extensions#7212
• Update Package Validation Baseline to 10.2.0 by @​Copilot in Update Package Validation Baseline to 10.2.0 dotnet/extensions#7208
• Enable package validation for M.E.AmbientMetadata.Build by @​evgenyfedorov2 in Enable package validation for M.E.AmbientMetadata.Build dotnet/extensions#7213
• [5752] FakeLogCollector waiting capabilities by @​Demo30 in [5752] FakeLogCollector waiting capabilities dotnet/extensions#6228
• Set network isolation policy for extensions-ci by @​wtgodbe in Set network isolation policy for extensions-ci dotnet/extensions#7221
• Fix FunctionInvokingChatClient invoke_agent span detection with exact match or space delimiter by @​Copilot in Fix FunctionInvokingChatClient invoke_agent span detection with exact match or space delimiter dotnet/extensions#7224
• Add Ordinal into ordering by @​cincuranet in Add Ordinal into ordering dotnet/extensions#7225
• Remove AIFunctionDeclaration tools on last iteration in FunctionInvokingChatClient by @​Copilot in Remove AIFunctionDeclaration tools on last iteration in FunctionInvokingChatClient dotnet/extensions#7207
• Remove unnecessary description tags by @​gewarren in Remove unnecessary description tags dotnet/extensions#7226
• Fix FunctionInvokingChatClient to respect ChatOptions.Tools modifications by function tools by @​Copilot in Fix FunctionInvokingChatClient to respect ChatOptions.Tools modifications by function tools dotnet/extensions#7218
• Add LoadFromAsync and SaveToAsync helper methods to DataContent by @​Copilot in Add LoadFromAsync and SaveToAsync helper methods to DataContent dotnet/extensions#7159
• Bump lodash from 4.17.21 to 4.17.23 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @​dependabot[bot] in Bump lodash from 4.17.21 to 4.17.23 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#7227
• Add logging to FunctionInvokingChatClient for approval flow, error handling, and loop control by @​Copilot in Add logging to FunctionInvokingChatClient for approval flow, error handling, and loop control dotnet/extensions#7228
• [main] Update dependencies from dotnet/arcade by @​dotnet-maestro[bot] in [main] Update dependencies from dotnet/arcade dotnet/extensions#7230
• Allow FunctionResultContent pass-through when CallId matches by @​Copilot in Allow FunctionResultContent pass-through when CallId matches dotnet/extensions#7229
• Propagate CachedInputTokenCount in OpenTelemetry telemetry by @​Copilot in Propagate CachedInputTokenCount in OpenTelemetry telemetry dotnet/extensions#7234
• Add InvocationRequired property to FunctionCallContent by @​Copilot in Add InvocationRequired property to FunctionCallContent dotnet/extensions#7126
• Escape the JSON data before embedding in Evaluation reports by @​peterwald in Escape the JSON data before embedding in Evaluation reports dotnet/extensions#7238
• Update mcpserver template to ModelContextProtocol 0.7.0-preview.1 by @​Copilot in Update mcpserver template to ModelContextProtocol 0.7.0-preview.1 dotnet/extensions#7236
• Update aiagent-webapi template to Agent Framework 1.0.0-preview.260127.1 by @​Copilot in Update aiagent-webapi template to Agent Framework 1.0.0-preview.260127.1 dotnet/extensions#7237
• Fix token metric unit to use UCUM format {token} by @​stephentoub in Fix token metric unit to use UCUM format {token} dotnet/extensions#7241
• Add server tool call support to OpenTelemetryChatClient per semantic conventions by @​Copilot in Add server tool call support to OpenTelemetryChatClient per semantic conventions dotnet/extensions#7240
• Preserve extra JSON schema properties in ToolJson serialization by @​Copilot in Preserve extra JSON schema properties in ToolJson serialization dotnet/extensions#7250
• Bring new cpu.requests formula from Kubernetes by @​amadeuszl in Bring new cpu.requests formula from Kubernetes dotnet/extensions#7239
• Update M.E.AI changelogs with recent changes by @​stephentoub in Update M.E.AI changelogs with recent changes dotnet/extensions#7242
• Fix DataUriParser to default to text/plain;charset=US-ASCII per RFC 2397 by @​Copilot in Fix DataUriParser to default to text/plain;charset=US-ASCII per RFC 2397 dotnet/extensions#7247
• Fix deadlock in ServiceEndpointWatcher when disposing change token registration by @​ReubenBond in Fix deadlock in ServiceEndpointWatcher when disposing change token registration dotnet/extensions#7255
• Rename FunctionCallContent.InvocationRequired to InformationalOnly with inverted polarity by @​Copilot in Rename FunctionCallContent.InvocationRequired to InformationalOnly with inverted polarity dotnet/extensions#7262
• Fix approval request/response correlation in FunctionInvokingChatClient by @​Copilot in Fix approval request/response correlation in FunctionInvokingChatClient dotnet/extensions#7261
• Add ReasoningOptions to ChatOptions by @​Copilot in Add ReasoningOptions to ChatOptions dotnet/extensions#7252

New Contributors

• @​cincuranet made their first contribution in Add Ordinal into ordering dotnet/extensions#7225
• @​ReubenBond made their first contribution in Fix deadlock in ServiceEndpointWatcher when disposing change token registration dotnet/extensions#7255

... (truncated)

10.2.0

What's Changed

• Bump version to 10.2.0 for next development cycle by @​Copilot in Bump version to 10.2.0 for next development cycle dotnet/extensions#7105
• Add unit parameter to metric source generator by @​mariamgerges in Add unit parameter to metric source generator dotnet/extensions#7099
• [main] Update dependencies from dotnet/arcade by @​dotnet-maestro[bot] in [main] Update dependencies from dotnet/arcade dotnet/extensions#7111
• Fix expected conversation length in SummarizingChatReducer integration tests by @​MackinnonBuck in Fix expected conversation length in SummarizingChatReducer integration tests dotnet/extensions#7119
• Fix build status badge in README.md by @​akoeplinger in Fix build status badge in README.md dotnet/extensions#7118
• Update AI changelogs for 10.1.0 by @​stephentoub in Update AI changelogs for 10.1.0 dotnet/extensions#7123
• Merging internal changes into release/10.1 branch by @​joperezr in Merging internal changes into release/10.1 branch dotnet/extensions#7127
• Bump glob from 11.0.1 to 11.1.0 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript by @​dependabot[bot] in Bump glob from 11.0.1 to 11.1.0 in /src/Libraries/Microsoft.Extensions.AI.Evaluation.Reporting/TypeScript dotnet/extensions#7052
• Fix markdown parser crash on inline HTML elements by @​Copilot in Fix markdown parser crash on inline HTML elements dotnet/extensions#7131
• Fix IndexOutOfRangeException when parsing markdown tables without trailing pipes by @​Copilot in Fix IndexOutOfRangeException when parsing markdown tables without trailing pipes dotnet/extensions#7133
• Merging changes from release/10.1 into main by @​joperezr in Merging changes from release/10.1 into main dotnet/extensions#7128
• Remove nuget.exe by @​ericstj in Remove nuget.exe dotnet/extensions#7138
• Augment UsageDetails with cached / reasoning token counts by @​stephentoub in Augment UsageDetails with cached / reasoning token counts dotnet/extensions#7122
• Expose ctors for setting AdditionalProperties on Hosted tools by @​stephentoub in Expose ctors for setting AdditionalProperties on Hosted tools dotnet/extensions#7120
• Update to OpenAI 2.8.0 by @​stephentoub in Update to OpenAI 2.8.0 dotnet/extensions#7136
• Add DocumentTokenChunker by @​KrystofS in Add DocumentTokenChunker dotnet/extensions#7093
• Skip tests by default in internal rolling builds by @​Copilot in Skip tests by default in internal rolling builds dotnet/extensions#7151
• Fix FunctionApprovalResponseContent to message mapping by @​PederHP in Fix FunctionApprovalResponseContent to message mapping  dotnet/extensions#7152
• [main] Update dependencies from dotnet/arcade by @​dotnet-maestro[bot] in [main] Update dependencies from dotnet/arcade dotnet/extensions#7155
• Add support for custom headers in HostedMcpServerTool by @​echapmanFromBunnings in Add support for custom headers in HostedMcpServerTool dotnet/extensions#7053
• AmbientMetadata.Build - release to GA by @​evgenyfedorov2 in AmbientMetadata.Build - release to GA dotnet/extensions#7161
• Overhaul project template builds and testing by @​jeffhandley in Overhaul project template builds and testing dotnet/extensions#7113
• Update Microsoft.Agents.AI.ProjectTemplates to latest Agent Framework by @​jeffhandley in Update Microsoft.Agents.AI.ProjectTemplates to latest Agent Framework dotnet/extensions#7167
• Introduce local vs. remote mcpserver template option by @​jeffhandley in Introduce local vs. remote mcpserver template option dotnet/extensions#7168
• Fix rolling build pipeline by @​jeffhandley in Fix rolling build pipeline dotnet/extensions#7171
• Add Reason property to FunctionApprovalResponseContent for custom rejection messages by @​Copilot in Add Reason property to FunctionApprovalResponseContent for custom rejection messages dotnet/extensions#7140
• [main] Update dependencies from dotnet/arcade by @​dotnet-maestro[bot] in [main] Update dependencies from dotnet/arcade dotnet/extensions#7180
• Fix ToChatResponse to use first appropriate CreatedAt instead of last by @​Copilot in Fix ToChatResponse to use first appropriate CreatedAt instead of last dotnet/extensions#7193
• Add support for InputImageUrl via reflection in OpenAIResponsesChatClient by @​Copilot in Add support for InputImageUrl via reflection in OpenAIResponsesChatClient dotnet/extensions#7195

New Contributors

• @​mariamgerges made their first contribution in Add unit parameter to metric source generator dotnet/extensions#7099
• @​akoeplinger made their first contribution in Fix build status badge in README.md dotnet/extensions#7118
• @​PederHP made their first contribution in Fix FunctionApprovalResponseContent to message mapping  dotnet/extensions#7152
• @​echapmanFromBunnings made their first contribution in Add support for custom headers in HostedMcpServerTool dotnet/extensions#7053

Full Changelog: dotnet/extensions@v10.1...v10.2.0

Commits viewable in compare view.

Updated Microsoft.IdentityModel.Protocols.OpenIdConnect from 8.15.0 to 8.16.0.

Release notes

Sourced from Microsoft.IdentityModel.Protocols.OpenIdConnect's releases.

8.16.0

New Features

• Add telemetry around signature validation. See PR #​3415 for details.

Fundamentals

• Fix FileVersion format to use two-digit year and day of year. See PR #​3389 for details.

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
• @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
• @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
• @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
• @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

[dependabot]

Labels

The following labels could not be found: dotnet. Please create it before Dependabot can add it to a pull request.

Please fix the above issues or remove invalid values from dependabot.yml.

[github-actions]

❌ REUSE compliance check failed. Please ensure all files have proper SPDX headers.

See REUSE Documentation for more information.