From b22e6633d4767b103475ce4ad3042563af780a85 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Mon, 23 Oct 2023 09:48:26 -0700
Subject: [PATCH] Bump Microsoft.Identity.Web from 2.15.1 to 2.15.3 in /webapi
(#534)
Bumps
[Microsoft.Identity.Web](https://github.com/AzureAD/microsoft-identity-web)
from 2.15.1 to 2.15.3.
Release notes
Sourced from Microsoft.Identity.Web's
releases.
2.15.3
- Update Azure.Identity library to 1.10.2 for CVE-2023-36414.
Bug Fixes:
- Microsoft.Identity.Web honors the user-provided value for the cache
expiry for in-memory cache. See #2466
for details.
2.15.2
- For the .NET 8 rc2 target framework, the IdentityModel dependencies
have been updated to Identity.Model.*.7.0.3.
Bug Fixes
- Fixes a regression introduced in 2.15.0 where the OnTokenValidated
delegates were no longer chained with an await. See issue#2513.
Changelog
Sourced from Microsoft.Identity.Web's
changelog.
2.15.3
- Update Azure.Identity library to 1.10.2 for CVE-2023-36414.
Bug Fixes:
- Microsoft.Identity.Web honors the user-provided value for the cache
expiry for in-memory cache. See #2466
for details.
2.15.2
- For the .NET 8 rc2 target framework, the IdentityModel dependencies
have been updated to Identity.Model.*.7.0.3.
Bug Fixes
- Fixes a regression introduced in 2.15.0 where the OnTokenValidated
delegates were no longer chained with an await. See issue#2513.
Commits
36022d4
changelog for 2.15.3 release (#2540)f2474ba
update Azure Identity to 1.10.2 (#2539)51de97e
Update in-memory cache expiry to take into account user-provided value
(#2514)eb5233f
Bump Microsoft.Identity.Client from 4.56.0 to 4.57.0 (#2538)7e4b725
add link to build and testing doc (#2537)fdc5734
Bump Azure.Identity in /tools/app-provisioning-tool/app-provisioning-lib
(#2534)62d8904
Bump Microsoft.Identity.Web.UI from 2.15.1 to 2.15.2 (#2533)1155ca1
Bump Microsoft.Identity.Web.DownstreamApi from 2.15.1 to 2.15.2 (#2532)24490b2
Add new contributing.md (#2528)cbb297a
Bump Microsoft.Identity.Web from 2.15.1 to 2.15.2 (#2531)- Additional commits viewable in compare
view
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
webapi/CopilotChatWebApi.csproj | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/webapi/CopilotChatWebApi.csproj b/webapi/CopilotChatWebApi.csproj
index 0a1f39cd1..b14b28cdd 100644
--- a/webapi/CopilotChatWebApi.csproj
+++ b/webapi/CopilotChatWebApi.csproj
@@ -20,7 +20,7 @@
-
+