Bump com.azure:azure-identity from 1.14.2 to 1.18.0 in /plugins/repository-azure

[dependabot]

Bumps com.azure:azure-identity from 1.14.2 to 1.18.0.

Release notes

Sourced from com.azure:azure-identity's releases.

azure-identity_1.18.0

1.18.0 (2025-09-16)

Features Added

• Added claims challenge support to AzureDeveloperCliCredential. Claims provided in TokenRequestContext are now passed to Azure Developer CLI via the --claims parameter, requiring azd CLI 1.18.1 or higher. Also enhanced error handling to extract user-friendly messages from JSON output and provide clear version compatibility warnings when the --claims flag is unsupported.
• Added claims challenge handling support to AzureCliCredential. When a token request includes claims, the credential will now throw a CredentialUnavailableException with instructions to use Azure PowerShell directly with the appropriate -ClaimsChallenge parameter.
• Added claims challenge handling support to AzurePowerShellCredential. When a token request includes claims, the credential will now throw a CredentialUnavailableException with instructions to use Azure PowerShell directly with the appropriate -ClaimsChallenge parameter.
• Added AzureIdentityEnvVars expandable string enum for type-safe environment variable names used in Azure Identity credentials.
• Added requireEnvVars(AzureIdentityEnvVars... envVars) method to DefaultAzureCredentialBuilder to enforce the presence of specific environment variables at build time. When configured, the credential will throw an IllegalStateException during build() if any of the specified environment variables are missing or empty.

Bugs Fixed

• Fixed AzurePowerShellCredential handling of XML header responses and /Date(epochTime)/ time format parsing that previously caused JsonParsingException. #46572
• Fixed AzureDeveloperCliCredential hanging when AZD_DEBUG environment variable is set by adding --no-prompt flag to the azd auth token command.

Other Changes

Dependency Updates

• Upgraded azure-core from 1.56.0 to version 1.56.1.
• Upgraded azure-core-http-netty from 1.16.0 to version 1.16.1.
• Upgraded com.microsoft.azure:msal4j from version 1.22.0 to version 1.23.1.

azure-core-http-netty_1.16.1

1.16.1 (2025-09-05)

Other Changes

Dependency Updates

• Upgraded azure-core from 1.56.0 to 1.56.1.
• Upgraded Reactor from 3.7.8 to 3.7.9. (#46430)
• Upgraded Reactor Netty from 1.2.8 to 1.2.9. (#46430)
• Upgraded Netty dependencies from 4.1.123.Final to 4.1.126.Final. (#46586)

Commits

• 49f5c08 Fix Metrics Advisor Readme issues (#22694)
• a2212c9 Update Core Library Changelog Release Dates (#22724)
• 549b834 Update docs metadata mutation logic (#22700)
• a410b47 [Service Bus] Add Dead Letter Queues Sample (#22142)
• c5a7398 fix service bus readme issue (#22320)
• d956dde create Subscription Rule with CorrelationFilter does not create respect prope...
• 525606e Added support for file share reliable download (#22504)
• fa07d23 fix sample controller (#22679)
• e83ac1b Limit the size of cached URL builders (#22697)
• f6fc9ec Prepare to release a patch version for azure-security-keyvault-jca and azure...
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[github-actions]

✅ Gradle check result for 83afd4a: SUCCESS

[codecov]

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 72.93%. Comparing base (eb28e77) to head (83afd4a).

Additional details and impacted files

@@             Coverage Diff              @@
##               main   #19361      +/-   ##
============================================
+ Coverage     72.81%   72.93%   +0.11%     
- Complexity    69801    69901     +100     
============================================
  Files          5674     5674              
  Lines        320850   320850              
  Branches      46383    46383              
============================================
+ Hits         233638   234007     +369     
+ Misses        68264    67921     -343     
+ Partials      18948    18922      -26     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.