Skip to content

Bump the nuget-minor-patch group with 9 updates#12

Open
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/apps/nexarr-api/NexArr.Api/nuget-minor-patch-014885b221
Open

Bump the nuget-minor-patch group with 9 updates#12
dependabot[bot] wants to merge 1 commit into
mainfrom
dependabot/nuget/apps/nexarr-api/NexArr.Api/nuget-minor-patch-014885b221

Conversation

@dependabot
Copy link
Copy Markdown

@dependabot dependabot Bot commented on behalf of github May 28, 2026

Updated BCrypt.Net-Next from 4.0.3 to 4.2.0.

Release notes

Sourced from BCrypt.Net-Next's releases.

4.2.0

Full Changelog: BcryptNet/bcrypt.net@v4.1.0...v4.2.0

4.1.0

What's Changed

New Contributors

Full Changelog: BcryptNet/bcrypt.net@4.0.3...v4.1.0

Commits viewable in compare view.

Updated Npgsql.EntityFrameworkCore.PostgreSQL from 10.0.1 to 10.0.2.

Release notes

Sourced from Npgsql.EntityFrameworkCore.PostgreSQL's releases.

10.0.2

Milestone issue

What's Changed

Full Changelog: npgsql/efcore.pg@v10.0.1...v10.0.2

Commits viewable in compare view.

Updated OpenTelemetry.Instrumentation.AspNetCore from 1.11.1 to 1.15.2.

Release notes

Sourced from OpenTelemetry.Instrumentation.AspNetCore's releases.

1.15.2

1.15.1

1.15.1-beta.2

1.15.1-beta.1

1.15.1-alpha.1

1.15.0

1.15.0-rc.1

1.15.0-beta.2

1.15.0-beta.1

1.15.0-alpha.1

1.14.2

1.14.1

1.14.0

1.14.0-rc.1

  • NuGet: OpenTelemetry.Instrumentation.SqlClient v1.14.0-rc.1

    • Remove support for the OTEL_SEMCONV_STABILITY_OPT_IN configuration option.
      Previously, the old conventions were emitted by default with the option to emit
      the stable conventions. Now, only the stable conventions are supported.
      (#​3592)

    • Improve SQL parsing for sanitization and summary generation. Support additional
      cases for escaped identifiers. Optimize performance of parsing logic.
      (#​3627)

    • Improve SQL parsing for sanitization for Unicode string literals.
      (#​3662)

    • Sanitize the object name for SQL query text using the LOGIN or USER keywords and
      remove from query summaries.
      (#​3663)

    • Improve SQL parsing to generate query summaries for more T-SQL keywords.
      (#​3671)

    • Make additional attributes available on Activity start. The full list of
      attributes available at time of sampling now conforms with the
      semantic conventions.
      (#​3675)

    • Metrics and spans report telemetry schema URL v1.33.0.
      (#​3680)

    See CHANGELOG for details.

1.14.0-beta.2

1.14.0-alpha.1

Commits viewable in compare view.

Updated OpenTelemetry.Instrumentation.Http from 1.11.1 to 1.15.1.

Release notes

Sourced from OpenTelemetry.Instrumentation.Http's releases.

1.15.1

1.15.1-beta.2

1.15.1-beta.1

1.15.1-alpha.1

1.15.0

1.15.0-rc.1

1.15.0-beta.2

1.15.0-beta.1

1.15.0-alpha.1

1.14.2

1.14.1

1.14.0

1.14.0-rc.1

  • NuGet: OpenTelemetry.Instrumentation.SqlClient v1.14.0-rc.1

    • Remove support for the OTEL_SEMCONV_STABILITY_OPT_IN configuration option.
      Previously, the old conventions were emitted by default with the option to emit
      the stable conventions. Now, only the stable conventions are supported.
      (#​3592)

    • Improve SQL parsing for sanitization and summary generation. Support additional
      cases for escaped identifiers. Optimize performance of parsing logic.
      (#​3627)

    • Improve SQL parsing for sanitization for Unicode string literals.
      (#​3662)

    • Sanitize the object name for SQL query text using the LOGIN or USER keywords and
      remove from query summaries.
      (#​3663)

    • Improve SQL parsing to generate query summaries for more T-SQL keywords.
      (#​3671)

    • Make additional attributes available on Activity start. The full list of
      attributes available at time of sampling now conforms with the
      semantic conventions.
      (#​3675)

    • Metrics and spans report telemetry schema URL v1.33.0.
      (#​3680)

    See CHANGELOG for details.

1.14.0-beta.2

1.14.0-alpha.1

Commits viewable in compare view.

Updated OpenTelemetry.Instrumentation.Runtime from 1.11.1 to 1.15.1.

Release notes

Sourced from OpenTelemetry.Instrumentation.Runtime's releases.

1.15.1

1.15.1-beta.2

1.15.1-beta.1

1.15.1-alpha.1

1.15.0

1.15.0-rc.1

1.15.0-beta.2

1.15.0-beta.1

1.15.0-alpha.1

1.14.2

1.14.1

1.14.0

1.14.0-rc.1

  • NuGet: OpenTelemetry.Instrumentation.SqlClient v1.14.0-rc.1

    • Remove support for the OTEL_SEMCONV_STABILITY_OPT_IN configuration option.
      Previously, the old conventions were emitted by default with the option to emit
      the stable conventions. Now, only the stable conventions are supported.
      (#​3592)

    • Improve SQL parsing for sanitization and summary generation. Support additional
      cases for escaped identifiers. Optimize performance of parsing logic.
      (#​3627)

    • Improve SQL parsing for sanitization for Unicode string literals.
      (#​3662)

    • Sanitize the object name for SQL query text using the LOGIN or USER keywords and
      remove from query summaries.
      (#​3663)

    • Improve SQL parsing to generate query summaries for more T-SQL keywords.
      (#​3671)

    • Make additional attributes available on Activity start. The full list of
      attributes available at time of sampling now conforms with the
      semantic conventions.
      (#​3675)

    • Metrics and spans report telemetry schema URL v1.33.0.
      (#​3680)

    See CHANGELOG for details.

1.14.0-beta.2

1.14.0-alpha.1

Commits viewable in compare view.

Updated System.IdentityModel.Tokens.Jwt from 8.14.0 to 8.18.0.

Release notes

Sourced from System.IdentityModel.Tokens.Jwt's releases.

8.18.0

New Features

  • Introduced a new interface IConfigurationEventHandlerContextAware<T> that provides context to the configuration event handler implementation, allowing it to optionally bypass a cache lookup. See PR #​3444.
  • Added Microsoft.IdentityModel.Dpop — a new package implementing DPoP (Demonstrating Proof-of-Possession) per RFC 9449. Provides both client-side and server-side proof validation with no System.Net.Http dependency. See PR #​3443.

8.17.0

Dependencies

  • Downgrade MicrosoftExtensionsLoggingAbstractionsVersion to 8.0.0 on .NET 10. See PR #​3435.

8.16.0

New Features

  • Add telemetry around signature validation. See PR #​3415 for details.

Fundamentals

  • Fix FileVersion format to use two-digit year and day of year. See PR #​3389 for details.

8.15.0

New Features

  • Add ECDsa support in X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey
    Extended X509SecurityKey and JsonWebKeyConverter.ConvertFromX509SecurityKey to support ECDSA keys.
    See PR #​2377 for details.

Bug Fixes

  • Sanitize logs to avoid leaking sensitive data
    Updated logging to sanitize sensitive values, reducing the risk of inadvertently exposing secrets or PII in logs.
    See PR #​3316 for details.
  • Optimize log sanitization with SearchValues
    Improved the performance of the log sanitization logic introduced earlier by using SearchValues, making sanitization more efficient in high-throughput scenarios.
    See PR #​3341 for details.
  • Update test for IDX10400
    Adjusted the IDX10400 test to align with the current behavior and error messaging.
    See PR #​3314 for details.

Fundamentals

  • Add supported algorithm tests
    Added new tests to validate the set of supported cryptographic algorithms, increasing confidence in algorithm coverage and compatibility.
    See PR #​3296 for details.
  • Migrate repository agent rules from .clinerules to agents.md
    Moved repository agent/AI-assist rules into markdown documentation to make them more visible and easier to maintain.
    See PR #​3313 for details.
  • Migrate Microsoft.IdentityModel.TestExtensions from Newtonsoft.Json to System.Text.Json
    Updated Microsoft.IdentityModel.TestExtensions to use System.Text.Json instead of Newtonsoft.Json, aligning tests with the runtime serialization stack.
    See PR #​3356 for details.
  • Disable code coverage comments
    Turned off automated code coverage comments on PRs to reduce noise while retaining coverage data elsewhere.
    See PR #​3349 for details.
  • Fix CodeQL alerts
    Addressed CodeQL-reported issues to improve security posture and static analysis cleanliness.
    See PR #​3364 for details.

.NET 10 / SDK and tooling updates

  • Building with .NET 10 preview / RC 1
    Updated the repository to build and test against .NET 10.0 preview/RC1, ensuring early compatibility with the upcoming runtime.
    See PRs #​3287, #​3357, and #​3358 for details.
  • Fix .NET 10 test execution consistency
    Ensured consistent use of the TargetNetNext parameter across build, test, and pack phases so .NET 10.0 tests execute reliably.
    See PR #​3337 for details.
  • Update project files and workflows for .NET 10.0 compatibility
    Adjusted project files and CI workflows to correctly target and run on .NET 10.0, including test and pack scenarios.
    See PR #​3363 for details.
  • Update .NET version to meet CG compliance
    Updated the .NET version references to be compliant with corporate governance (CG) requirements.
    See PR #​3353 for details.
  • Update Coverlet collector and test SDK
    • Bumped CoverletCollectorVersion to 6.0.4.
      See PR #​3333 for details.
    • Upgraded Microsoft.NET.Test.Sdk to a newer version for improved test reliability and tooling support.
      ... (truncated)

Commits viewable in compare view.

Updated WebPush from 1.0.12 to 1.0.13.

Release notes

Sourced from WebPush's releases.

No release notes found for this version range.

Commits viewable in compare view.

Updated xunit.runner.visualstudio from 3.1.4 to 3.1.5.

Release notes

Sourced from xunit.runner.visualstudio's releases.

3.1.5

Release notes: https://xunit.net/releases/visualstudio/3.1.5

Commits viewable in compare view.

Updated Xunit.SkippableFact from 1.5.23 to 1.5.61.

Release notes

Sourced from Xunit.SkippableFact's releases.

1.5.61

What's Changed

New Contributors

Full Changelog: AArnott/Xunit.SkippableFact@v1.5.23...v1.5.61

Commits viewable in compare view.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
  • @dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
  • @dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
  • @dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
  • @dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

@dependabot
Bump the nuget-minor-patch group with 9 updates
b66f792 
Bumps BCrypt.Net-Next from 4.0.3 to 4.2.0
Bumps Npgsql.EntityFrameworkCore.PostgreSQL from 10.0.1 to 10.0.2
Bumps OpenTelemetry.Instrumentation.AspNetCore from 1.11.1 to 1.15.2
Bumps OpenTelemetry.Instrumentation.Http from 1.11.1 to 1.15.1
Bumps OpenTelemetry.Instrumentation.Runtime from 1.11.1 to 1.15.1
Bumps System.IdentityModel.Tokens.Jwt from 8.14.0 to 8.18.0
Bumps WebPush from 1.0.12 to 1.0.13
Bumps xunit.runner.visualstudio from 3.1.4 to 3.1.5
Bumps Xunit.SkippableFact from 1.5.23 to 1.5.61

---
updated-dependencies:
- dependency-name: BCrypt.Net-Next
  dependency-version: 4.2.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-minor-patch
- dependency-name: Npgsql.EntityFrameworkCore.PostgreSQL
  dependency-version: 10.0.2
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: OpenTelemetry.Instrumentation.AspNetCore
  dependency-version: 1.15.2
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-minor-patch
- dependency-name: OpenTelemetry.Instrumentation.Http
  dependency-version: 1.15.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-minor-patch
- dependency-name: OpenTelemetry.Instrumentation.Runtime
  dependency-version: 1.15.1
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-minor-patch
- dependency-name: System.IdentityModel.Tokens.Jwt
  dependency-version: 8.18.0
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: nuget-minor-patch
- dependency-name: WebPush
  dependency-version: 1.0.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: WebPush
  dependency-version: 1.0.13
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: xunit.runner.visualstudio
  dependency-version: 3.1.5
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: Xunit.SkippableFact
  dependency-version: 1.5.61
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: Xunit.SkippableFact
  dependency-version: 1.5.61
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
- dependency-name: Xunit.SkippableFact
  dependency-version: 1.5.61
  dependency-type: direct:production
  update-type: version-update:semver-patch
  dependency-group: nuget-minor-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependabot:dotnet Dependabot NuGet updates for the .NET monorepo dependabot:monorepo Dependabot updates affecting the full monorepo solution labels May 28, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

dependabot:dotnet Dependabot NuGet updates for the .NET monorepo dependabot:monorepo Dependabot updates affecting the full monorepo solution

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants